Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Step-by-Step Interactive Training buffer overflow
updated since 13.02.2007
Published:14.02.2007
Source:
SecurityVulns ID:7223
Type:client
Threat Level:
5/10
Description:Buffer overflow on bokmarks files handling (.cbl, .cbm, .cbo).
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
CVE:CVE-2006-3448 (Buffer overflow in the Step-by-Step Interactive Training in Microsoft Windows 2000 SP4, XP SP2 and Professional, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a long Syllabus string in crafted bookmark link files (cbo, cbl, or .cbm), a different issue than CVE-2005-1212.)
Original documentdocumentBrett Moore, MS Interactive Training .cbo Overflow (14.02.2007)
 documentMICROSOFT, Microsoft Security Bulletin MS07-005 (13.02.2007)
Files:Microsoft Security Bulletin MS07-005 Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod