8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.231 Low
EPSS
Percentile
96.5%
Microsoft Windows Vista and Server 2008 contain a memory corruption vulnerability when saving a specially crafted search file. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
In Windows Vista and Server 2008, users can save searches as a search folder that is generated by a .search-ms
XML file. Microsoft Windows fails to properly parse .search-ms
files, which can result in memory corruption.
By convincing a user to save a specially crafted search specified by a .search-ms
file, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.
Apply an update
This vulnerability is addressed in Microsoft Security Bulletin MS08-075. This bulletin also includes several workarounds, including changing the file association for .search-ms
files and denying the ability to save searches.
468227
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Updated: December 09, 2008
Affected
We have not received a statement from the vendor.
The vendor has not provided us with any further information regarding this vulnerability.
This vulnerability is addressed in Microsoft Security Bulletin MS08-075. This bulletin also includes several workarounds, including changing the file association for .search-ms
files and denying the ability to save searches.
If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23468227 Feedback>).
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
Thanks to Andre Protas of eEye for reporting this vulnerability.
This document was written by Will Dormann.
CVE IDs: | CVE-2008-4268 |
---|---|
Severity Metric: | 4.39 Date Public: |