Alias(es)Windows.showHelp.CHM.File.Execution.Weakness |
Release DateDec 07, 2005 |
Severityhigh |
ImpactSystem compromise |
DescriptionThis indicates an attack attempt against an arbitrary program-execution vulnerability in Microsoft Windows.The vulnerability is caused by a flaw in the showHelp() function when it references a compiled help file (.CHM file). It allows a remote attacker to bypass security checking to execute arbitrary programs via a URL containing ".." sequences and a filename ending with "::". |
Affected ProductsMicrosoft Windows XP SP1Microsoft Windows NT Workstation 4.0 SP6a Microsoft Windows NT Server 4.0 SP6a NT Enterprise Server 4.0 SP6a Windows 2000 Server SP4 Windows 2000 Professional SP4 |
Recommended ActionsApply the patch as given in the Microsoft Security Bulletin MS04-023. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2003-1041 |
Reference/shttp://www.securityfocus.com/bid/9320 (BugTraq)http://www.microsoft.com/technet/security/Bulletin/MS04-023.mspx (MS-ID) |
