Computer Security
[EN] no-pyccku

Microsoft Windows Vista Internet Explorer applications execution
SecurityVulns ID:7454
Threat Level:
Description:By clicking the link to the local file with the same name as local folder, file is executed.
Affected:MICROSOFT : Windows Vista
CVE:CVE-2007-1658 (Windows Mail in Microsoft Windows Vista might allow user-assisted remote attackers to execute certain programs via a link to a (1) local file or (2) UNC share pathname in which there is a directory with the same base name as an executable program at the same level, as demonstrated using C:/windows/system32/winrm (winrm.cmd) and migwiz (migwiz.exe).)
Original documentdocumentkingcope_(at), [Full-disclosure] Microsoft Windows Vista - Windows Mail Client Side Code Execution Vulnerability (23.03.2007)
Files:Microsoft Windows Vista remote application launch PoC

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod