Security Portal

Intrusion Prevention Service

Signature Version: 4.780


FILE Microsoft Paint JPEG Image Parsing Integer Overflow -1 (CVE-2010-0028)
Threat Level: High
Release Date: 2011/5/12
Category: Buffer Overflow
Signature ID: 1112767
Included In:
Affected OS: Windows
Description: An integer overflow vulnerability exists in Microsoft Paint, shipped with various versions of Microsoft Windows. The vulnerability is due to an input validation error while parsing specially crafted JPEG image files.
Impact: Remote code execution
Recommendation: Update vendor's patch.
False Positive: None
False Negative: None
Additional Information (Links open in new window):
Reference(s): CVE-2010-0028, MS10-005

Search the Threat Database
Enter Rule ID or Name