Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.13642
Kategorie:Windows
Titel:Buffer overrun in Windows Shell (839645)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is running a version of Windows which has a flaw in
its shell. An attacker could persuade a user on the remote host to execute
a rogue program by using a CLSID instead of a file type, thus fooling
the user into thinking that he will not execute an application but simply
open a document.

Solution : http://www.microsoft.com/technet/security/bulletin/ms04-024.mspx
Risk factor : Medium

Querverweis: BugTraq ID: 9510
Common Vulnerability Exposure (CVE) ID: CVE-2004-0420
http://www.securityfocus.com/bid/9510
Bugtraq: 20040127 GOOROO CROSSING: File Spoofing Internet Explorer 6 (Google Search)
http://www.securityfocus.com/archive/1/351379
Bugtraq: 20040127 RE: GOOROO CROSSING: File Spoofing Internet Explorer 6 (Google Search)
http://www.security-express.com/archives/bugtraq/2004-01/0300.html
Cert/CC Advisory: TA04-196A
http://www.us-cert.gov/cas/techalerts/TA04-196A.html
CERT/CC vulnerability note: VU#106324
http://www.kb.cert.org/vuls/id/106324
Microsoft Security Bulletin: MS04-024
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-024
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2245
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2381
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2894
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3386
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3533
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3604
http://secunia.com/advisories/10736/
XForce ISS Database: ie-clsid-file-extension-spoofing(14964)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14964
CopyrightThis script is Copyright (C) 2004 Tenable Network Security

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.