|
|
|
Vulnerability Note VU#468227
Microsoft Vista and Server 2008 vulnerable to memory corruption via saved search
OverviewMicrosoft Windows Vista and Server 2008 contain a memory corruption vulnerability when saving a specially crafted search file. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
I. DescriptionIn Windows Vista and Server 2008, users can save searches as a search folder that is generated by a .search-ms XML file. Microsoft Windows fails to properly parse .search-ms files, which can result in memory corruption.II. ImpactBy convincing a user to save a specially crafted search specified by a .search-ms file, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.III. SolutionApply an update
This vulnerability is addressed in Microsoft Security Bulletin MS08-075. This bulletin also includes several workarounds, including changing the file association for .search-ms files and denying the ability to save searches.
Systems Affected
References
http://www.microsoft.com/technet/security/Bulletin/ms08-075.mspx
http://msdn.microsoft.com/en-us/library/bb892885(VS.85).aspx
Credit
Thanks to Andre Protas of eEye for reporting this vulnerability.
This document was written by Will Dormann.
Other Information
| Date Public | 12/09/2008 |
| Date First Published | 12/09/2008 02:38:01 PM |
| Date Last Updated | 12/09/2008 |
| CERT Advisory | |
| CVE Name | CVE-2008-4268 |
| Metric | 4.39 |
| Document Revision | 6 |
If you have feedback, comments, or additional information about this vulnerability, please send us
email.
|
 |
