MS.Windows.Explorer.URL.File.Parsing.Stack.Overflow
Description
This indicates a possible exploit of a buffer-overflow vulnerability in Microsoft Windows explorer.exe.
This vulnerability can occurs when the application handles malformed Internet Shortcut (.url) files. By creating a malicious .url Internet Shortcut file with an overly long URL parameter, a remote attacker may overflow a buffer and cause the victim's explorer.exe process to crash.
Affected Products
Microsoft Corporation: Windows 95
Microsoft Corporation: Windows 98
Microsoft Corporation: Windows 98 Second Edition
Microsoft Corporation: Windows Me
Microsoft Corporation: Windows XP
Microsoft Corporation: Windows 2000 Any version
Microsoft Corporation: Windows 2003 Any version
Microsoft Corporation: Windows NT 4.0
Impact
Denial of service
Recommended Actions
Do not open any untrusted Internet Shortcut (.url) files.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-11 | 16.978 |