Network Security: Detailed info on Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Vuln-Dev

[Top] [All Lists]

Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer

from [Rob Thompson] Network Security

[Permanent Link]

Subject:	Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling
Date:	Thu, 27 Sep 2007 10:53:36 -0700

I have tested this on a Windoze XP SP2 (fully patched).  Scanned with
Norton AV Corporate Edition v 10 and ClamAV 0.91.2 and both scans came
back just fine, no hanging.

Upon opening the file, it caused 50% CPU utilization at a constant
rate.  That could not be stopped until the computer was reboot.
Simply closing the program wasn't enough to stop the CPU from
stopping...

BTW - I'm running this on a P4 with HT.  Not a dual core...

-- 
Rob

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, rocheml Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, rocheml Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, none Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, rocheml Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, Rob Thompson <=

Previous by Date:	Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, rocheml
Next by Date:	Re: [waraxe-2007-SA#056] - Another Sql Injection in NukeSentinel 2.5.11, Bugsman
Previous by Thread:	Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling, rocheml
Next by Thread:	Joomla multiple vulerabilities (1.0.X >= ), security
Indexes:	[Date] [Thread] [Top] [All Lists]