|
Family: Windows : Microsoft Bulletins --> Category: infos
Unchecked Buffer in XP Shell Could Enable System Compromise (329390) Vulnerability Scan
Vulnerability Scan Summary Checks for MS Hotfix 329390, Flaw in Microsoft XP Shell
Detailed Explanation for this Vulnerability Test
Synopsis :
Arbitrary code can be executed on the remote host through Windows Shell.
Description :
The remote version of Windows contains a flaw in the handling of
audio files (MP3, WMA) in the Windows Shell component which may allow an
attacker to execute arbitrary code on the remote host with the SYSTEM
rights.
Solution :
Microsoft has released a set of patches for Windows XP :
http://www.microsoft.com/technet/security/bulletin/ms02-072.mspx
Threat Level:
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|