virus logo Intrusion Prevention

MS.Windows.Insecure.Library.Loading.Code.Execution

description-logoDescription

This indicates a possible attack against a remote code execution vulnerability in Microsoft Windows applications in the way the applications load external libraries.
When the vulnerable application loads a DLL file without specifying a fully qualified path name, Windows will try to locate the DLL by searching a defined set of directories which could lead to arbitrary code execution.

affected-products-logoAffected Products

Microsoft Windows system with webclient service on

Impact logoImpact

System compromise

recomended-action-logoRecommended Actions

Refer to the vendor's advisory:
http://www.microsoft.com/technet/security/advisory/2269637.mspx

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://blogs.technet.com/b/srd/
ID 24217
Created Aug 27, 2010
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows
Affected App All