.ANI File Description

Determina Security Research has discovered a vulnerability in the USER32.DLL code responsible for loading animated cursor (.ANI) files. This vulnerability can be exploited by a malicious web page or HTML email message and results in remote code execution with the privileges of the logged-in user. The vulnerable code is present in all versions of Windows up to and including Windows Vista. All applications that use the standard Windows API for loading cursors and icons are affected.

Other Information For .ANI File Extension

• Company:

  Microsoft Corporation.

• File Type:

  Microsoft Windows Animated Cursor File

• Identifying Characters (Hex):

  52 49 46 46

• Identifying Characters (ASCII):

  RIFF