2 matches found
CVE-2004-2289
CVE-2004-2289 is the Windows XP Desktop.ini/ShellClassInfo variant that leads to arbitrary code execution via a .ShellClassInfo CLSID pointing to an executable. Connected docs show a related Windows Shell remote-code-execution vulnerability (CVE-2006-0012) in Windows Explorer triggered by COM obj...
CVE-2004-2289
Microsoft Windows XP Explorer allows local users to execute arbitrary code via a system folder with a Desktop.ini file containing a .ShellClassInfo specifier with a CLSID value that is associated with an executable file...