An exception handling vulnerability in the Microsoft Windows kernel may allow a remote attacker to execute arbitrary code.
Microsoft Windows kernel contains an exception handling vulnerability that can allow a remote attacker to execute arbitrary code with privileges of the local user. Exploitation of this vulnerability can occur if an attacker convinces a user to visit a specially crafted web site.
Microsoft's bulletin states that the following Windows operating systems are affected by this vulnerability:
A remote attacker who can successfully convince a user visit a specially crafted web site may be able to execute arbitrary code with privileges of the local user.
Apply an updateMicrosoft has released updates in Microsoft Security Bulletin MS06-051 to address this issue.
Read e-mail messages in plain text format.
Thanks to Microsoft Security for reporting this vulnerability in Microsoft Security Bulletin MS06-051. Microsoft, in turn, thanks Matt Miller of Leviathan Security Group for reporting the vulnerability to them.
This document was written by Katie Washok.
|Date First Published:||2006-08-08|
|Date Last Updated:||2006-09-18 18:03 UTC|