Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Windows Animated Cursor Handling vulnerability - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Windows Animated Cursor Handling vulnerability

Microsoft has released advisory 935423 regarding a vulnerability in Windows Animated Cursor Handling. A bug in the way Windows deals with  animated cursor files can allow execution of arbitrary code under the user that downloaded the malicious file.

Affected are Win2k SP4, XP SP2, Server 2003 and Vista. We have received reports of this vulnerability being exploited in the wild. While Animated cursors are usually downloaded as .ani files, blocking these files would not be sufficient to mitigate the vulnerability.

The vulnerability has been added to our missing microsoft patches table.


158 Posts
Mar 29th 2007

Sign Up for Free or Log In to start participating in the conversation!