VYPR

Color Management Module

by Microsoft

CVEs (4)

  • CVE-2017-0063MedMar 17, 2017
    risk 0.48cvss 6.5epss 0.35

    The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2; Windows Server 2008 SP2 and R2; and Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote…

  • CVE-2017-0061MedMar 17, 2017
    risk 0.41cvss 5.3epss 0.43

    The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2, Windows Server 2008 SP2 and R2, and Windows 7 SP1 allows remote attackers to bypass ASLR and execute code in combination with another vulnerability through a crafted website, aka…

  • CVE-2005-1219Jul 12, 2005
    risk 0.07cvss epss 0.50

    Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags.

  • CVE-2020-1117May 21, 2020
    risk 0.02cvss epss 0.11

    A remote code execution vulnerability exists in the way that the Color Management Module (ICM32.dll) handles objects in memory, aka 'Microsoft Color Management Remote Code Execution Vulnerability'.