Divide By Zero

CVE-2007-2237

Medium

5.5/10

Summary

Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

Published Jun 06, 2007

Divide By Zero

CVE-2007-2237

Summary

CWE-369 - Divide By Zero

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS