MS03-027: Unchecked Buffer in Windows Shell..

By Steven
in Back Page News

 Share

Recommended Posts

Grand Master

Steven

Posted
Posted

Microsoft Security Bulletin MS03-027 Print

Unchecked Buffer in Windows Shell Could Enable System Compromise (821557)

Originally posted: July 16, 2003

Summary

Who should read this bulletin: Customers using Microsoft? Windows? XP

Impact of vulnerability: Run code of an attacker's choice

Maximum Severity Rating: Important

Recommendation: Customers should install the patch at the earliest opportunity.

End User Bulletin: An end-user version of this bulletin is available at: http://www.microsoft.com/security/security...ns/ms03-027.asp

Affected Software:

Microsoft Windows XP

Not affected Software:

Microsoft Windows Millennium Edition

Microsoft Windows NT? Server 4.0

Microsoft Windows NT? 4.0, Terminal Server Edition

Microsoft Windows 2000

Microsoft Windows Server 2003

Technical description:

The Windows shell is responsible for providing the basic framework of the Windows user interface experience. It is most familiar to users as the Windows desktop. It also provides a variety of other functions to help define the user's computing session, including organizing files and folders, and providing the means to start programs.

An unchecked buffer exists in one of the functions used by the Windows shell to extract custom attribute information from certain folders. A security vulnerability results because it is possible for a malicious user to construct an attack that could exploit this flaw and execute code on the user?s system.

An attacker could seek to exploit this vulnerability by creating a Desktop.ini file that contains a corrupt custom attribute, and then host it on a network share. If a user were to browse the shared folder where the file was stored, the vulnerability could then be exploited. A successful attack could have the effect of either causing the Windows shell to fail, or causing an attacker?s code to run on the user?s computer in the security context of the user.

http://www.microsoft.com/technet/security/...in/MS03-027.asp

Grand Master

Steven

Posted
  • Author
Posted
i wonder why this isn't a hotfix? :blink: it comes with a severity rating of "important", and the problem lies in the windows shell (explorer.exe) so why not make it a hotfix?

The fix is on Windows Update or at the Article Site :D

Grand Master

Steven

Posted
  • Author
Posted (edited)
yes i know, but it's a KB release, not a hotfix.

edit: though on windows update it's listed under "critical updates and service packs" :blink:

what is and isn't considered a hotfix?

this is a hotfix.. aka QFE Patch

http://support.microsoft.com/default.aspx?...kb;EN-US;821557 :yes:

Edited by xStainDx
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.