CVE-2003-1048 Information

Description

Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009445.html http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009473.html http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009506.html http://www.ciac.org/ciac/bulletins/o-191.shtml http://www.kb.cert.org/vuls/id/685364 http://www.securityfocus.com/bid/8530 http://www.us-cert.gov/cas/techalerts/TA04-212A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-025 https://exchange.xforce.ibmcloud.com/vulnerabilities/16804 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1793 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A206 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A2100 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A212 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A236 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A509 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A517