|
sec MS07-061 – Critical: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460)
MS07-061 – Critical: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460)
Bulletin Severity Rating:Critical - This update resolves a publicly reported vulnerability. A remote code execution vulnerability exists in the way that the Windows shell handles specially crafted URIs that are passed to it. If the Windows shell did not sufficiently validate these URIs, an attacker could exploit this vulnerability and execute arbitrary code. Microsoft has only identified ways to exploit this vulnerability on systems using Internet Explorer 7. However, the vulnerability exists in a Windows file, Shell32.dll, which is included in all supported editions of Windows XP and Windows Server 2003.
http://www.microsoft.com/technet/security/bulletin/ms07-061.mspx?pubDate=2007-11-13
Array
Tue, 13 Nov 2007 08:00:00 GMT
|
03-12-2008, 11:16 AM
Posted
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
