Content
(MS08-038) Microsoft Windows Saved Search Vulnerability (950582)
- Type
- Logic error
- Impact of exploitation
- Remote Code Execution
- User Interaction
- user interaction is needed
- Attack Vector
- Website or e-mail with malicious content
- Rating
- Medium
- CVE reference
- CVE-2008-1435 ,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows Vista SP1,
- Windows Server 2008 ,
- Summary
- A vulnerability in Microsoft Windows may allow for remote code-execution attacks.
Tab Navigation
Description
Windows is an industry-standard operating system developed by Microsoft. A vulnerability in Microsoft Windows may allow for remote code-execution attacks. The vulnerability lies in Windows Explorer. A specially crafted search file saved using Windows Explorer could crash it and carry out code execution. A user would have to open a malicious search file for an attack to occur.
McAfee Product Mitigation & Recommendations
Recommendations
Download and install the patch available from Microsoft (950582): http://www.microsoft.com/technet/security/Bulletin/MS08-038.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS08-038) Microsoft Windows Saved Search Vulnerability (950582)
- Signature identifier:
- 5988
- Release date:
- 7/8/2008
Additional Resources
Microsoft Security Bulletin: Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)
http://www.microsoft.com/technet/security/Bulletin/MS08-038.mspx
All Information
Timeline -
7/8/2008
Vendor has provided a patch.
Description -
Windows is an industry-standard operating system developed by Microsoft. A vulnerability in Microsoft Windows may allow for remote code-execution attacks. The vulnerability lies in Windows Explorer. A specially crafted search file saved using Windows Explorer could crash it and carry out code execution. A user would have to open a malicious search file for an attack to occur.
McAfee Product Mitigation & Recommendations
Recommendations -
Download and install the patch available from Microsoft (950582): http://www.microsoft.com/technet/security/Bulletin/MS08-038.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS08-038) Microsoft Windows Saved Search Vulnerability (950582)
- Signature identifier:
- 5988
- Release date:
- 7/8/2008
Additional Resources
Additional Resources -
Microsoft Security Bulletin: Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)
http://www.microsoft.com/technet/security/Bulletin/MS08-038.mspx
