Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information.
https://exchange.xforce.ibmcloud.com/vulnerabilities/89611
http://www.securityfocus.com/bid/64221
http://secunia.com/advisories/55964
http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html