header-logo
Suggest Exploit
vendor:
Windows XP Professional
by:
Ac!dDrop
7.5
CVSS
HIGH
Heap Overflow DOS
119
CWE
Product Name: Windows XP Professional
Affected Version From: Windows XP Professional SP2
Affected Version To: Windows XP Professional SP2
Patch Exists: YES
Related CWE: MS08-046
CPE: o:microsoft:windows_xp::sp2
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2008

EMR_SETICMPROFILEA Heap Overflow DOS

EMR_SETICMPROFILEA Heap Overflow DOS is a vulnerability related to MS08-046. It causes Windows Explorer and Internet Explorer to crash and allows running of arbitrary code. It has been tested on Windows XP Professional SP2 with mscms.dll 5.1.2600.2709 and gdi32.dll 5.1.2600.2818.

Mitigation:

Install the patch provided by Microsoft for MS08-046.
Source

Exploit-DB raw data:

EMR_SETICMPROFILEA Heap Overflow DOS

By Ac!dDrop

related to MS08-046

Tested on windows Xp professional Sp2
mscms.dll 5.1.2600.2709
gdi32.dll 5.1.2600.2818 

Causes Windows explorer and Internet explorer to crash.

You can run arbitary code.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/6732.rar (2008-emf_MS08-046.rar)

# milw0rm.com [2008-10-12]

Navigation

Suggest Exploit

Services By CQR