The host has ANI parser in Microsoft Windows and is prone to denial of dervice vulnerability.

Successful exploits will cause application to crash or become unresponsive, denying service to legitimate users. Impact Level: Application

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

The flaw is due to improper bounds checking when processing '.ani' files which can be exploited via crafted '.ani' file to cause the system to consume an overly large amount of memory and become unresponsive.

Microsoft Windows 2000 SP4 and earlier Microsoft Windows XP SP3 and earlier Microsoft Windows 2003 SP2 and earlier

• http://code.google.com/p/skylined/issues/detail?id=3
• http://xforce.iss.net/xforce/xfdb/56756

---

Updated on 2017-03-28