Microsoft Windows Shell contains a buffer overflow

Overview A remotely exploitable buffer overflow vulnerability exists in the Microsoft Windows Shell. Description The Microsoft Windows Shell provides the basic human-computer interface for Windows systems. Microsoft describes the Shell as follows: The Windows Shell is responsible for providing th...

[Full-Disclosure] EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability

Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability Release Date: October 12, 2004 Date Reported: August 2, 2004 Severity: High Code Execution Vendor: Microsoft Systems Affected: Windows XP SP1 and earlier Windows Me Overview: eEye Digital Security has discovered a...

Windows Shell buffer overflow

No description provided...

MS04-037: Vulnerability in Windows Shell (841356)

The remote version of Windows contains a flaw in the Windows Shell that could allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to lure a victim into visiting a malicious website or into opening a malicious file attachment. C Tenable...

Trillian 0.74i MSN Module - Remote Buffer Overflow

/ Cerulean Studios Trillian 0.74i Buffer Overflow in MSN module exploit created by Komrade - unsecure altervista org Written for Windows 2000 / Windows XP. Tested on Windows XP Professional sp0. This exploit spawn a shell on port 5555, you have just to execute the program and connect to port 5555...

CVE-2002-1327

Buffer overflow in the Windows Shell function in Microsoft Windows XP allows remote attackers to execute arbitrary code via an .MP3 or .WMA audio file with a corrupt custom attribute, aka "Unchecked Buffer in Windows Shell Could Enable System Compromise."...

Windows Shell file type spoofing

By using class id in content-disposition it's possible ti spoof file type. Content-Disposition: attachment; filename=malware.3050f4d8-98B5- 11CF-BB82-00AA00BDCE0Bfunballgitespiethrow2Empeg"...

Microsoft Windows contains a vulnerability in the way the Windows Shell launches applications

Overview Microsoft Windows contains a remote code execution vulnerability in the way that the Windows Shell launches applications. An remote attacker could exploit this vulnerability to execute arbitrary code if they could trick a user into visiting a malicious website. Description Microsoft...

Microsoft Security Bulletin MS04-024

Microsoft Security Bulletin MS04-024 Vulnerability in Windows Shell Could Allow Remote Code Execution 839645 Issued: July 13, 2004 Version: 1.2 Summary Who should read this document: Customers who use Microsoft® Windows® Impact of Vulnerability: Remote Code Execution Maximum Severity Rating:...

MS04-024: Buffer overrun in Windows Shell (839645)

The remote host is running a version of Windows that has a flaw in its shell. An attacker could persuade a user on the remote host to execute a rogue program by using a CLSID instead of a file type, thus fooling the user into thinking that he will not execute an application but simply open a...

[Full-Disclosure] Mozilla Security Advisory 2004-07-08

Mozilla Security Advisory July 7, 2004 Summary: Windows shell: scheme exposed in Mozilla Products: Mozilla Suite Mozilla Firefox Mozilla Thunderbird Fixed in: Mozilla Suite 1.7.1 Mozilla Firefox 0.9.2 Mozilla Thunderbird 0.7.2 Description: Windows versions of Mozilla products pass URIs using the...

CVE-2004-0420

The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 ...

CVE-2004-0420

CVE-2004-0420 describes a remote code execution in the Windows Shell when a file is spoofed via a CLSID in the filename. The vulnerability affects Windows 98, Me, NT 4.0, 2000, XP, and Server 2003, enabling an attacker who lures a user to a malicious Web page to execute arbitrary code with the us...

CVE-2004-0420

The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 ...

MS03-027: Buffer overrun in Windows Shell (821557)

The remote host is running a version of Windows that has a flaw in its shell. An attacker could exploit it by creating a malicious Desktop.ini file, putting it on a shared folder and waiting for someone to browse it. C Tenable Network Security, Inc. include"compat.inc"; if description...

Microsoft Security Bulletin MS03-027: Unchecked Buffer in Windows Shell Could Enable System Compromise (Q821557)

-----BEGIN PGP SIGNED MESSAGE----- - - --------------------------------------------------------------- Title: Unchecked Buffer in Windows Shell Could Enable System Compromise 821557 Date: 16 July 2003 Software: Microsoftr Windows r XP Impact: Run code of attacker's choice Max Risk: Important...

MS02-014: Unchecked buffer in Windows Shell (313829)

The Windows shell of the remote host has an unchecked buffer that can be exploited by a local attacker to run arbitrary code on this host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11307; scriptversion"1.36"; scriptcvsdate"Date: 2018/11/15 20:50:29";...

CVE-2002-1327

Buffer overflow in the Windows Shell function in Microsoft Windows XP allows remote attackers to execute arbitrary code via an .MP3 or .WMA audio file with a corrupt custom attribute, aka "Unchecked Buffer in Windows Shell Could Enable System Compromise."...

Buffer overflow in Microsoft Windows Shell

Overview A remotely exploitable buffer overflow exists in the Microsoft Windows Shell. This buffer overflow is present in all versions of Windows XP, but it is not present in other versions of Windows. Description There is a buffer overflow in the Microsoft Windows Shell. The Shell provides the...

Microsoft Security Bulletin MS02-072: Unchecked Buffer in Windows Shell Could Enable System Compromise (Q329390)

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Unchecked Buffer in Windows Shell Could Enable System Compromise 329390 Date: 18 December 2002 Software: Microsoft Windows XP Impact: Run code of an attacker's choice Max Risk:...