Microsoft Windows XP explorer.exe Remote Denial of Service Vulnerability

It has been reported that Windows Explorer for Windows XP may be prone to a denial of service vulnerability that may allow a remote attacker to cause the system to hang by sending a malicious directory containing 'wmf' files to a vulnerable user via e-mail or other means. Windows Explorer automatically attempts to parse 'wmf' files in the directory, however, an exceptional condition occurs if the directory contains records of zero length.

Although unconfirmed, all versions of Windows XP are considered to be affected by this vulnerability.


 

Privacy Statement
Copyright 2010, SecurityFocus