Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error.
Score: 1.5
Priority: P4 - Informational (Low)
Score: 0.64581
Percentile:
0.98349
CVSS v3.1 Score: 5.5
Severity: MEDIUM