The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote malicious users to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host (MSHTA), as demonstrated using a Microsoft Word document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows 2003 server standard |
||
microsoft windows 2003 server web |
||
microsoft windows xp |
||
microsoft windows 2000 |
||
microsoft windows 98 |
||
microsoft windows 98se |
||
microsoft windows me |
||
microsoft windows 2003 server enterprise |
||
microsoft windows 2003 server r2 |