Microsoft Windows search-ms协议解析远程代码执行漏洞（MS08-075）

BUGTRAQ ID: 32652 CVECAN ID: CVE-2008-4269 Microsoft Windows是微软发布的非常流行的操作系统。 Windows资源管理器在解析search-ms协议时没有正确地处理参数，如果用户访问了恶意站点并通过特殊方式调用了search-ms协议处理器的话，就可能导致执行任意代码。 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsoft Windows Server 2008 临时解决方法： 在Windows资源管理器中禁用search-ms协议处理程序。 使用交互方法 1...

Microsoft Windows search-ms Protocol Handler Command Execution (MS08-075; CVE-2008-4269)

Windows Search is a standard component of Windows Vista that allows instant search capabilities for most common file and data types.Windows Search has XML-based files that save information about a search in Windows. A remote code execution vulnerability was reported in Windows Explorer which allo...