Intrusion Prevention

MS.Windows.Explorer.URL.File.Parsing.Stack.Overflow

Description

This indicates a possible exploit of a buffer-overflow vulnerability in Microsoft Windows explorer.exe.
This vulnerability can occurs when the application handles malformed Internet Shortcut (.url) files. By creating a malicious .url Internet Shortcut file with an overly long URL parameter, a remote attacker may overflow a buffer and cause the victim's explorer.exe process to crash.

Affected Products

Microsoft Corporation: Windows 95
Microsoft Corporation: Windows 98
Microsoft Corporation: Windows 98 Second Edition
Microsoft Corporation: Windows Me
Microsoft Corporation: Windows XP
Microsoft Corporation: Windows 2000 Any version
Microsoft Corporation: Windows 2003 Any version
Microsoft Corporation: Windows NT 4.0

Impact

Denial of service

Recommended Actions

Do not open any untrusted Internet Shortcut (.url) files.

CVE References

CVE-2006-3351