8 matches found
Microsoft Windows Search Remote Code Execution Vulnerability (959349)
This host is missing a critical security update according to Microsoft Bulletin MS08-075. OpenVAS Vulnerability Test $Id: gbms08-075.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Windows Search Remote Code Execution Vulnerability 959349 Authors: Madhuri D Copyright: Copyright c 2010 Greenbon...
Microsoft Windows Search Remote Code Execution Vulnerability (959349)
This host is missing a critical security update according to Microsoft Bulletin MS08-075. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Windows search-ms协议解析远程代码执行漏洞(MS08-075)
BUGTRAQ ID: 32652 CVECAN ID: CVE-2008-4269 Microsoft Windows是微软发布的非常流行的操作系统。 Windows资源管理器在解析search-ms协议时没有正确地处理参数,如果用户访问了恶意站点并通过特殊方式调用了search-ms协议处理器的话,就可能导致执行任意代码。 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsoft Windows Server 2008 临时解决方法: 在Windows资源管理器中禁用search-ms协议处理程序。 使用交互方法 1...
Windows search-ms protocol handler command execution vulnerability
Added: 12/11/2008 CVE: CVE-2008-4269 BID: 32652 OSVDB: 50566 Background The search-ms protocol allows applications to query the Windows Search index. Problem A vulnerability in Windows allows command execution when a user follows a specially crafted search-ms URL which passes arbitrary arguments ...
Windows search-ms protocol handler command execution vulnerability
Added: 12/11/2008 CVE: CVE-2008-4269 BID: 32652 OSVDB: 50566 Background The search-ms protocol allows applications to query the Windows Search index. Problem A vulnerability in Windows allows command execution when a user follows a specially crafted search-ms URL which passes arbitrary arguments ...
CVE-2008-4269
CVE-2008-4269 describes a remote code execution vulnerability in the Windows Search parsing workflow. The issue lies in the search-ms protocol handler used by Windows Explorer on Windows Vista (Gold/SP1) and Windows Server 2008, where untrusted parameter data is produced by incorrect parsing and ...
MS08-075: Vulnerabilities in Windows Search Could Allow Remote Code Execution (959349)
The remote version of Windows contains a version of the Windows Shell that contains a vulnerability in the way it handles saved seaches. An attacker might use this flaw to trick an administrator to execute a saved search and therefore execute arbitrary commands on his behalf. C Tenable Network...
Microsoft Windows search-ms Protocol Handler Command Execution (MS08-075; CVE-2008-4269)
Windows Search is a standard component of Windows Vista that allows instant search capabilities for most common file and data types.Windows Search has XML-based files that save information about a search in Windows. A remote code execution vulnerability was reported in Windows Explorer which allo...