SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  OS (Microsoft)  >  Windows Explorer Vendors:  Microsoft
Windows XP Explorer Executes Arbitrary Code in Folders
SecurityTracker Alert ID:  1008843
CVE Reference:  GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jan 25 2004
Impact:  Execution of arbitrary code via network, User access via network
Exploit Included:  Yes  
Version(s): Windows XP Explorer
Description:  A vulnerability was reported in Microsoft Windows XP in Windows Explorer. A remote user can create a folder that, when viewed by the target user, will execute arbitrary code on the target user's system.

http-equiv reported that a remote user can create a specially crafted 'folder' that includes HTML scripting code and a Windows executable ('.exe' file) containing arbitary code. When a target user attempts to view the contents of the 'folder' (which may be considered an ostensibly safe task by many users), the arbitrary code will be automatically executed on the target user's computer by Windows Explorer. The code will run with the privileges of the target user.

If the 'folder' is an HTML-based file, Windows Explorer (on XP) will execute the file when viewed, extracted, or opened. The scripting code can reference the executable contained in the 'folder', causing the executable to run.

A demonstration exploit is available at:

http://www.malware.com/my.pics.zip
Impact:  A remote user can cause arbitrary code to be executed on the target user's system.
Solution:  No solution was available at the time of this entry.
Vendor URL:  www.microsoft.com/technet/security/ (Links to External Site)
Cause:  State error
Underlying OS:  Windows (XP)
Reported By:  "http-equiv@excite.com" <1@malware.com>
Message History:   This archive entry has one or more follow-up message(s) listed below.
Apr 14 2004 (Vendor Issues Fix) Windows XP Explorer Executes Arbitrary Code in Folders
The vendor has issued a fix as part of MS04-011.


 Source Message Contents
Date:  Sun, 25 Jan 2004 00:31:38 -0000
From:  "http-equiv@excite.com" <1@malware.com>
Subject:  [Full-Disclosure] WINDOWS XP: Idiot Engineering 101

 



take a look!!!

http://www.malware.com/my.pics.zip




-- 
http://www.malware.com



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2004, SecurityGlobal.net LLC