vendor:
Windows
by:
Unknown
7.5
CVSS
HIGH
Remote Command Execution
Unknown
CWE
Product Name: Windows
Affected Version From: Windows 2000 and XP
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: Unknown
Platforms Tested: Windows
Unknown
Remote Command Execution Vulnerability in Microsoft Windows
Microsoft Windows is prone to a remote command-execution vulnerability because it opens help files from unsafe locations. An attacker could exploit this issue by enticing a victim to load help files when working in a directory containing crafted '.chm' files.
Mitigation:
Unknown