MS07-061 ? Critical: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460) - Version:1.2 |
|
| BugsAlert Home > MS07-061 ? Critical: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460) - Version:1.2 | |
|
Severity Rating: Critical - Revision Note: Bulletin updated to add KB article information to the Known Issues area of the General Information section.Summary: This update resolves a publicly reported vulnerability. A remote code execution vulnerability exists in the way that the Windows shell handles specially crafted URIs that are passed to it. If the Windows shell did not sufficiently validate these URIs, an attacker could exploit this vulnerability and execute arbitrary code. Microsoft has only identified ways to exploit this vulnerability on systems using Internet Explorer 7. However, the vulnerability exists in a Windows file, Shell32.dll, which is included in all supported editions of Windows XP and Windows Server 2003. Original Source: http://www.microsoft.com/technet/security/bulletin/MS07-061.mspx?pubDate=2008-01-16 Learn more about MS07-061 ? Critical: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460) - Version:1.2 |
|
|
Tags: ms07-061 critical vulnerability windows uri handling remote code execution 943460 version 1.2 |
|
Related Items |
|
|
RedHat: Critical: pcre security update
|
|
|
GROUP-E Collaboration Software head_auth.php Remote File Inclusion
|
|
|
CVE-2008-1548 (Aeries Student Information System)
|
|
|
CVE-2008-4079 (movable_type)
|
|
|
CVE-2008-2902 (AskMe Pro)
|
|
|
Bugtraq: Curious vulnerability in Excel 2007
|
|
|
Kaspersky Internet Security 2009 2 years+10 user
|
|
