CVE-2010-1098

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to 7

Description The issue allows remote attackers to cause a denial of service, consuming memory and CPU, via a crafted biClrUsed value in the BITMAPINFO header of a .ANI file. This is related to the ANI parser in Microsoft Windows, which is used in Internet Explorer and other applications.

Recommendations For versions prior to 7, update to a newer version to mitigate the risk. As a temporary workaround, consider avoiding the use of .ANI files or restricting access to them until a patch is available.