SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Microsoft)  >   Windows Explorer Vendors:   Microsoft
Microsoft Windows Explorer OLE Parsing Bug Lets Users Deny Service
SecurityTracker Alert ID:  1017736
SecurityTracker URL:  http://securitytracker.com/id/1017736
CVE Reference:   CVE-2007-1347   (Links to External Site)
Updated:  May 18 2008
Original Entry Date:  Mar 8 2007
Impact:   Denial of service via local system
Exploit Included:  Yes  
Version(s): Tested on Windows 2000 SP4 FR and Windows XP SP2 FR
Description:   A vulnerability was reported in Windows Explorer. A user can cause denial of service conditions.

A user can create a specially crafted Microsoft Word document that, when processed by Windows Explorer, will trigger a memory corruption error in 'Ole32.dll' and cause Explorer to crash. Moving the cursor over the file or viewing the file properties can trigger the crash.

The original advisory is available at:

http://www.milw0rm.com/exploits/3419

A demonstration exploit is available at:

http://www.milw0rm.com/sploits/03062007-Explorer_Crasher.tar

Marsu (MarsupilamiPowa at hotmail.fr) reported this vulnerability.

Impact:   A user can cause the target user's Windows Explorer to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.microsoft.com/ (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC