Security Portal

Intrusion Prevention Service

 
Signature Version: 4.780

 



FILE Microsoft Paint JPEG Image Parsing Integer Overflow -1 (CVE-2010-0028)
 
Threat Level: High
Release Date: 2011/5/12
 
Category: Buffer Overflow
Signature ID: 1112767
Included In:
Affected OS: Windows
 
Description: An integer overflow vulnerability exists in Microsoft Paint, shipped with various versions of Microsoft Windows. The vulnerability is due to an input validation error while parsing specially crafted JPEG image files.
 
Impact: Remote code execution
Recommendation: Update vendor's patch.
 
False Positive: None
False Negative: None
 
Additional Information (Links open in new window):
Reference(s): CVE-2010-0028, MS10-005
 

Search the Threat Database
Enter Rule ID or Name