CVE-2002-1185 in Internet Explorerinfo

Summary

Internet Explorer 5.01 through 6.0 does not properly check certain parameters of a PNG file when opening it, which allows remote attackers to cause a denial of service (crash) by triggering a heap-based buffer overflow using invalid length codes during decompression, aka "Malformed PNG Image File Failure."

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Disclosure

12/11/2002

Moderation

VulDB entry created

Entries

VDB-19195 (1)

CPE

ready

CWE

CWE-122 (Confirmed)

CVSS

5.3

EPSS

0.29205

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1185
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1185
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1185/

◂ Previous Overview Next ▸