Denial of Service vulnerability in Explorer.exe

vendor:

Windows XP

by:

7.5

CVSS

HIGH

Denial of Service

399

CWE

Product Name: Windows XP

Affected Version From: Windows XP

Affected Version To: Windows XP SP1

Patch Exists: NO

Related CWE:

CPE: o:microsoft:windows_xp

Metasploit:

Other Scripts:

Platforms Tested: Windows XP

Denial of Service vulnerability in Explorer.exe

A remote attacker can exploit a vulnerability in Explorer.exe on Microsoft Windows XP prior to Windows XP SP2 by presenting a malicious TIFF image to a victim user. When the image is processed, it consumes system resources and impacts the performance of the computer, resulting in a denial of service.

Mitigation:

Upgrade to Windows XP SP2 or later version.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/11202/info

Explorer.exe that ships with Microsoft Windows XP prior to Windows XP SP2 is reported prone to a denial of service vulnerability. 

The vulnerability is reported to exist when Explorer.exe handles certain TIFF format images.

A remote attacker may exploit this vulnerability by presenting a malicious image to a victim user. When this image is processed in a sufficient manner, system resources will be consumed. This will impact the performance of the computer, effectively denying service to legitimate users.

The following example TIFF image is available:

49 49 2a 00 08 00 00 00 01 00 00 01 03 00 01 00
00 00 01 00 00 00 08 00 00 00

This should be placed in a file and given a '.tif' extension.