CVE-2002-1185

Name of the Vulnerable Software and Affected Versions: Internet Explorer versions 5.01 through 6.0

Description: The issue arises from improper checking of certain parameters in a PNG file, leading to a heap-based buffer overflow when invalid length codes are encountered during decompression. This can cause a denial of service, resulting in a crash.

Recommendations: For Internet Explorer versions 5.01 through 6.0, consider avoiding the use of PNG images until a patch is available, or restrict access to potentially malicious PNG files to minimize the risk of exploitation.