CVE-2006-7210

Microsoft Windows 2000, XP, and Server 2003 - Denial of Service via Crafted PNG IHDR Block

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2006-7210. PoCs published by vegas78, Preddy.

AI-analyzed exploit summary This exploit is a proof-of-concept for a denial-of-service (DoS) vulnerability in Microsoft Windows PNG IHDR block handling. It creates a malformed PNG file that causes 100% CPU usage when viewed in Windows Explorer, requiring a restart of explorer.exe to recover.

Description

Microsoft Windows 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (cpu consumption) via a PNG image with crafted (1) Width and (2) Height values in the IHDR block.

Exploits (3)

exploitdb WORKING POC VERIFIED
by vegas78 · cdoswindows
https://www.exploit-db.com/exploits/2210

This exploit is a proof-of-concept for a denial-of-service (DoS) vulnerability in Microsoft Windows PNG IHDR block handling. It creates a malformed PNG file that causes 100% CPU usage when viewed in Windows Explorer, requiring a restart of explorer.exe to recover.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Windows (tested on XP SP2)
No auth needed
Prerequisites: Access to write a file on the target system · Victim interaction to view the PNG file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Preddy · cdoswindows
https://www.exploit-db.com/exploits/2204

This exploit is a proof-of-concept for CVE-2006-7210, which targets a denial-of-service vulnerability in Microsoft Windows' handling of PNG IHDR blocks. The code generates a malformed PNG file that causes 100% CPU usage when processed by Windows Explorer.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Windows (tested on Windows XP SP2)
No auth needed
Prerequisites: Ability to deliver the malformed PNG file to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Preddy · perldoswindows
https://www.exploit-db.com/exploits/2194

This Perl script generates a malformed PNG file with an invalid IHDR block, triggering a denial-of-service (DoS) condition in Microsoft Windows systems by causing 100% CPU usage in explorer.exe. The exploit leverages a vulnerability in PNG image parsing to achieve the DoS effect.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Windows (tested on Windows XP SP2)
No auth needed
Prerequisites: Ability to deliver the malformed PNG file to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2204
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/19520
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2210
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2194

Scores

EPSS 0.2512
EPSS Percentile 97.7%

Details

Status published
Products (3)
microsoft/windows_2000
microsoft/windows_2003_server
microsoft/windows_xp
Published Jun 27, 2007
Tracked Since Feb 18, 2026