Microsoft Windows ClickOnce Application Installer Remote Code Execution Vulnerability

Microsoft Windows is prone to a remote code-execution vulnerability.

An attacker can exploit this issue by tricking an unsuspecting victim into viewing a malformed file.

Successful exploits can allow attackers to execute arbitrary code within the privileges of the user running the affected application.

Note: This issue can also be exploited by embedding other file types such as Python ('.py') or '.jar' files, if the correct interpreter is installed on the vulnerable computer.


 

Privacy Statement
Copyright 2010, SecurityFocus