Windows Vista Feed Headlines Gadget Remote Code Execution Vulnerability

Windows Vista Feed Headlines Gadget Remote Code Execution Vulnerability

Windows Vista is prone to a remote code-execution vulnerability because it fails to adequately sanitize user-supplied data.

Attackers exploit this issue by coercing unsuspecting users to subscribe to a malicious RSS feed using the affected gadget.

Attackers can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Successful attacks may facilitate the remote compromise of affected computers.