10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.954 High
EPSS
Percentile
99.4%
Microsoft Windows Shell does not properly handle some shortcut files and may permit arbitrary code execution when a specially-crafted file is opened.
Microsoft Windows supports files that point to another file, called “shortcut” files. These files have the .lnk
extension, and may have properties that are passed to the target program or file.
Windows does not properly handle some properties on shortcut files and may be vulnerable to a specially-crafted shortcut file format. An attacker that has crafted such a shortcut file and that has convinced a user to open the file may be able to execute arbitrary code on the system. This file may be opened from an email message or a web link.
The arbitrary code is executed with the user’s privileges, so if an administrative user has opened the file, the attacker may be able to take complete control of the system.
A remote, unauthenticated attacker may be able to execute arbitrary code and take complete control of the system.
Apply an update
Please see Microsoft Security Bulletin MS05-049 for more information on fixes, workarounds, and updates.
922708
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Updated: October 11, 2005
Affected
We have not received a statement from the vendor.
The vendor has not provided us with any further information regarding this vulnerability.
Please see Microsoft Security Bulletin MS05-049 for more information.
If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23922708 Feedback>).
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
<http://www.microsoft.com/technet/security/Bulletin/MS05-049.mspx>
Microsoft reported this vulnerability, and in turn thank Cesar Cerrudo of Argeniss for information on the issue.
This document was written by Ken MacInnis.
CVE IDs: | CVE-2005-2122 |
---|---|
Severity Metric: | 5.29 Date Public: |