In each case, devices running these programs and opening either a specially crafted Web page or JPEG image file could be susceptible to a denial-of-service attack. Microsoft has been alerted to the issue, and the firm will not release details of the flaw.
Versions affected include Windows Mobile 2003 and 5.0. In the case of the Picures & Videos flaw, the device would lock up for approximately 10-15 minutes while it attempts to process the file. No error messages would be given during this period.
The flaw in Internet Explorer would cause a stack overflow, which in turn would cause IE to terminate. The device would become unstable, and would require a reset to begin using IE, and the device, normally.
Microsoft, Windows Mobile, Flaw, Vulnerability