VYPR
Unrated severityNVD Advisory· Published Mar 24, 2010· Updated Jun 16, 2026

CVE-2010-1098

CVE-2010-1098

Description

The ANI parser in Microsoft Windows before 7 on the x86 platform, as used in Internet Explorer and other applications, allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted biClrUsed value in the BITMAPINFO header of a .ANI file.

Affected products

3
  • Microsoft/Windows2 versions
    cpe:2.3:o:microsoft:windows_vista:*:*:x86:*:*:*:*:*+ 1 more
    • cpe:2.3:o:microsoft:windows_vista:*:*:x86:*:*:*:*:*
    • (no CPE)range: <7
  • cpe:2.3:o:microsoft:windows_xp:*:*:x86:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.