4 matches found
ZDI-10-016: Microsoft Windows ShellExecute Improper Sanitization Code Execution Vulnerability
ZDI-10-016: Microsoft Windows ShellExecute Improper Sanitization Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-016 February 9, 2010 -- CVE ID: CVE-2010-0027 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Windows XP -- TippingPointTM IPS Customer...
Microsoft Windows Shell Handler Could Allow Remote Code Execution Vulnerability (975713)
This host is missing a critical security update according to Microsoft Bulletin MS10-007. OpenVAS Vulnerability Test $Id: secpodms10-007.nasl 5361 2017-02-20 11:57:13Z cfi $ Microsoft Windows Shell Handler Could Allow Remote Code Execution Vulnerability 975713 Authors: Veerendra GG Copyright:...
Microsoft Windows Shell Handler URL Validation Code Execution (MS10-007; CVE-2010-0027)
A remote code execution vulnerability has been reported in the Microsoft Windows ShellExecute API function. The Windows user interface provides users with access to a wide variety of objects necessary for running applications and managing the operating system. ShellExecute is part of the Windows...
CVE-2010-0027
CVE-2010-0027 documents a vulnerability in URL validation in Internet Explorer (IE 5.01, 6, 6 SP1, 7, 8) and in the ShellExecute API on Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2, where input parameters in crafted URLs could allow remote code execution by an attacker. The connected MSKB en...