|
||||||||||||||||
|
||||||||||||||||
|
| |||||||||||||||
|
||||||||||||||||
|
||||||||||||||||
|
|
 |
| |
|
| |
| |
|
|
|
|
|
|
|
áòèé÷ :: Security-alerts |
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [security-alerts] FW: [SA24659] Microsoft Windows Animated Cursor Handling Vulnerability
> ---------------------------------------------------------------------- > > TITLE: > Microsoft Windows Animated Cursor Handling Vulnerability > > SECUNIA ADVISORY ID: > SA24659 > > VERIFY ADVISORY: > > > CRITICAL: > Extremely critical > > IMPACT: > System access > > WHERE: > From remote > > OPERATING SYSTEM: > Microsoft Windows 2000 Datacenter Server > > Microsoft Windows 2000 Advanced Server > > Microsoft Windows 2000 Professional > > Microsoft Windows 2000 Server > > Microsoft Windows XP Home Edition > > Microsoft Windows XP Professional > > Microsoft Windows Server 2003 Datacenter Edition > > Microsoft Windows Server 2003 Enterprise Edition > > Microsoft Windows Server 2003 Standard Edition > > Microsoft Windows Server 2003 Web Edition > > Microsoft Windows Storage Server 2003 > > Microsoft Windows Vista > > > DESCRIPTION: > A vulnerability has been reported in Microsoft Windows, which can be > exploited by malicious people to compromise a user's system. > > The vulnerability is caused due to an unspecified error in the > handling of animated cursors and can e.g. be exploited by tricking a > user into visiting a malicious website using Internet Explorer or > opening a malicious e-mail message. > > Successful exploitation allows execution of arbitrary code. > > NOTE: The vulnerability is currently being actively exploited. > > SOLUTION: > Do not browse untrusted sites or view untrusted e-mails. > > PROVIDED AND/OR DISCOVERED BY: > Discovered as a 0-day. > > ORIGINAL ADVISORY: > Microsoft: > > urity-advisory-935423-posted.aspx > > OTHER REFERENCES: > US-CERT VU#191609: > >
|