Memory Consumption Denial of Service Vulnerability in Microsoft Internet Explorer 5.5 and 6.0

Memory Consumption Denial of Service Vulnerability in Microsoft Internet Explorer 5.5 and 6.0

CVE-2004-1922 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:N/A:P

Microsoft Internet Explorer 5.5 and 6.0 allocates memory based on the memory size written in the BMP file instead of the actual BMP file size, which allows remote attackers to cause a denial of service (memory consumption) via a small BMP file with has a large memory size.

Learn more about our Web Application Penetration Testing UK.