CVE-2007-5133
published 2007-09-27CVE-2007-5133: Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a…
PriorityP428high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
22.91%
97.5th percentile
Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a large tEXt chunk that possibly triggers an integer overflow in PNG chunk size handling, as demonstrated by badlycrafted.png.
Detection & IOCsextracted from sources · hover to see the quote
- →Look for PNG files with abnormally large tEXt chunks being opened in explorer.exe; this may indicate exploitation of CVE-2007-5133 triggering CPU exhaustion. ↗
- →Monitor explorer.exe for sustained near-100% CPU consumption, which is the primary symptom of this DoS attack via malformed PNG. ↗
- →Flag PNG files where the tEXt chunk size field contains an unusually large or near-maximum value, consistent with an integer overflow trigger. ↗
- ·Exploitation is user-assisted; the victim must open or preview the malicious PNG file in Windows Explorer for the DoS to trigger. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/45521http://www.securityfocus.com/archive/1/480594/100/0/threadedhttp://www.securityfocus.com/archive/1/480706/100/0/threadedhttp://www.securityfocus.com/archive/1/480827/100/0/threadedhttp://www.securityfocus.com/archive/1/480854/100/0/threadedhttp://www.securityfocus.com/archive/1/480864/100/0/threadedhttp://www.securityfocus.com/bid/25816http://osvdb.org/45521http://www.securityfocus.com/archive/1/480594/100/0/threadedhttp://www.securityfocus.com/archive/1/480706/100/0/threadedhttp://www.securityfocus.com/archive/1/480827/100/0/threadedhttp://www.securityfocus.com/archive/1/480854/100/0/threadedhttp://www.securityfocus.com/archive/1/480864/100/0/threadedhttp://www.securityfocus.com/bid/25816
2007-09-27
Published