Vulnerabilities > CVE-2007-5133 - Resource Management Errors vulnerability in multiple products
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a large tEXt chunk that possibly triggers an integer overflow in PNG chunk size handling, as demonstrated by badlycrafted.png.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 69 | |
| Application | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Microsoft Windows Explorer PNG Image Local Denial Of Service Vulnerability. CVE-2007-5133. Dos exploit for windows platform |
| id | EDB-ID:30619 |
| last seen | 2016-02-03 |
| modified | 2007-07-26 |
| published | 2007-07-26 |
| reporter | Xavier Roche |
| source | https://www.exploit-db.com/download/30619/ |
| title | Microsoft Windows Explorer PNG Image - Local Denial Of Service Vulnerability |
References
- http://www.securityfocus.com/bid/25816
- http://osvdb.org/45521
- http://www.securityfocus.com/archive/1/480864/100/0/threaded
- http://www.securityfocus.com/archive/1/480854/100/0/threaded
- http://www.securityfocus.com/archive/1/480827/100/0/threaded
- http://www.securityfocus.com/archive/1/480706/100/0/threaded
- http://www.securityfocus.com/archive/1/480594/100/0/threaded