Security Advisory

CVE-2007-2237

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-06-06 20:00:00

Last updated 2024-08-07 13:33:27

Assigner certcc

State PUBLISHED

Description

Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error.

← Browse all CVEs View on cve.org ↗