A vulnerability has been identified in Microsoft Windows, which could be exploited by remote attackers to take complete control of an affected system. This issue is due to a memory corruption error when rendering malformed cursors, animated cursors or icons, which could be exploited by remote attackers to execute arbitrary commands by tricking a user into visiting a malicious web page or viewing an email message containing a specially crafted ANI file.
Note : This zero-day vulnerability is currently being exploited in the wild.
A fully functional remote code execution exploit is available for FrSIRT VNS subscribers.
Affected Products
Microsoft Windows 2000 Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows XP 64-Bit Edition ersion 2003 (Itanium) Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 Microsoft Windows Server 2003 (Itanium) Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 SP1 (Itanium) Microsoft Windows Server 2003 x64 Edition Microsoft Windows Vista
Microsoft Internet Explorer 6 Microsoft Internet Explorer 7
