5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.235 Low
EPSS
Percentile
96.6%
Windows Explorer is vulnerable to script injection via the Web View DLL. Exploitation of this vulnerability may lead to execution of arbitrary code.
Windows Explorer uses the Web View DLL (webvw.dll
) to display information about a selected file/folder (file size, author, version, creation date, etc.) within an HTML based preview pane. A vulnerable situation may arise when the webvw.dll
is supplied a specially crafted author name embedded in the metadata of a file/folder. If the author name resembles an email address, the webvw.dll
will create an email hyperlink to display in the preview pane. Please note that the preview pane and web view is enabled by default. Any application that uses webvw.dll
may be vulnerable.
This issue affects Windows Explorer on the following platforms:
* Windows 2000 Professional
* Windows 2000 Server
* Windows 2000 Advanced Server
If a remote attacker can persuade a user to select a specially crafted file with Windows Explorer, that attacker may be able to execute arbitrary code with the privileges of the compromised user.
Microsoft has released a patch in Security Bulletin MS05-024 to address this issue.
Disable Web View
Disabling the Web View feature will greatly reduce the chances of exploitation. Web View can be disabled by switching to the “Use Windows classic folders” option within the Folder Options of Windows Explorer.
668916
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Updated: May 10, 2005
Affected
We have not received a statement from the vendor.
The vendor has not provided us with any further information regarding this vulnerability.
Microsoft has released a patch in Security Bulletin MS05-024 to address this issue.
If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23668916 Feedback>).
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
This vulnerability was reported in a GreyMagic security advisory and is resolved by Microsoft Security Bulletin MS05-024.
This document was written by Jeff Gennari and Ken MacInnis and was based on information provided in the security bulletins mentioned above.
CVE IDs: | CVE-2005-1191 |
---|---|
Severity Metric: | 19.28 Date Public: |