|
|
Microsoft Windows URI Handler Command Execution Vulnerability
|
Bugtraq ID:
|
25945
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2007-3896
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Oct 05 2007 12:00AM
|
|
Updated:
|
Nov 22 2007 01:44PM
|
|
Credit:
|
Billy Rios is credited with the discovery of this issue.
|
|
Vulnerable:
|
Nortel Networks Centrex IP Client Manager 8.0
Nortel Networks Centrex IP Client Manager 7.0
Nortel Networks Centrex IP Client Manager 2.5
Nortel Networks Centrex IP Client Manager 9.0
Nortel Networks Centrex IP Client Manager
Microsoft Internet Explorer 7.0
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista Ultimate
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Premium
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Home Basic
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Enterprise
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista Business
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
+
Microsoft Windows Vista 0
Avaya Messaging Application Server MM 3.1
Avaya Messaging Application Server MM 3.0
Avaya Messaging Application Server MM 2.0
Avaya Messaging Application Server MM 1.1
Avaya Messaging Application Server 0
Avaya CIE 1.0
|
|
|
|
Not Vulnerable:
|
|
|
|
