← CVECheck
HomeVulnerabilities

CVE-2002-1185 — MEDIUM severity vulnerability (Internet Explorer 5.01 through 6.0 does not properly check c)

Internet Explorer 5.01 through 6.0 does not properly check certain parameters of a PNG file when opening it, which allows remote attackers to cause a denial of service (crash) by triggering a heap-based buffer overflow using invalid length codes during decompression, aka "Malformed PNG Image File Failure."

CVE IDCVE-2002-1185
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:N/A:P
CWENVD-CWE-Other
StatusModified
Published2002-12-11
Last modified2026-04-16
DescriptionInternet Explorer 5.01 through 6.0 does not properly check certain parameters of a PNG file when opening it, which allows remote attackers to cause a denial of service (crash) by triggering a heap-based buffer overflow using invalid length codes during decompression, aka "Malformed PNG Image File Failure."
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →