Short Name |
CHAT:MSN:INVALID:PNG-HEIGHT |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
CHAT |
Keywords |
Invalid PNG Height |
Release Date |
2005/02/07 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects invalid PNG (Portable Network Graphic) files sent through MSN messenger. PNG images are typically used for iconic emoticons such as smilies ( :-) ). A malicious user can send a vulnerable chat client an invalid PNG file to cause a buffer overflow, enabling the user to remotely execute arbitrary code.
A remote buffer overflow vulnerability affects the Portable Network Graphics (PNG) image format processing functionality of Microsoft Windows Media Player. This issue is due to a failure of the application to properly validate the size of image data prior to copying it into static process buffers. An attacker may exploit this issue to execute arbitrary code with the privileges of the SYSTEM user. This will facilitate unauthorized access and privilege escalation.