Google.Apps.Googleapps.Url.Mailto.URI
| Name | Google.Apps.Googleapps.Url.Mailto.URI.Argument.Injection |
| Release Date | Dec 15, 2009 |
| Severity | High |
| Impact | System Compromise |
| Description | This indicates an attack attempt against an argument-injection vulnerability in Google Apps.
The vulnerability is caused by an input validation error when the googleapps.exe program handles a specially crafted "googleapps.url.mailto://" URI. It allows a remote attacker to execute arbitrary programs on a vulnerable system. |
| Affected Products | Google Apps 1.1.110 6031 |
| Recommended Actions | Upgrade to the latest versions:
http://pack.google.com/intl/en/pack_installer.html |
| Reference/s | http://www.securityfocus.com/bid/36581 (BugTraq)
http://secunia.com/advisories/36924/
|
Reference: VID-17990
|