New Search

Animated Cursor Denial of Service (Windows 2000)

oval:org.mitre.oval:def:3216

The Windows Animated Cursor (ANI) capability in Windows NT Windows 2000 through SP4 Windows XP through SP1 and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero which causes an invalid memory address to be used and leads to a kernel crash or (2) the rate number set to zero which leads to resource exhaustion and hang.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2004-1305
Product(s):
  • Windows Animated Cursor