Multiple vulnerabilities were discovered in the icotool (CVE-2017-6010, CVE-2017-6011) and wrestool (CVE-2017-6009) tools of icoutils, a set of programs that deal with MS Windows icons and cursors, which may result in denial of service or the execution of arbitrary code if a malformed .ico or .exe file is processed.