Back to search
CVE-2007-1658
Published: Mar 24, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Windows Mail in Microsoft Windows Vista might allow user-assisted remote attackers to execute certain programs via a link to a (1) local file or (2) UNC share pathname in which there is a directory with the same base name as an executable program at the same level, as demonstrated using C:/windows/system32/winrm (winrm.cmd) and migwiz (migwiz.exe).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070323 Re: Microsoft Windows Vista - Windows Mail Client Side Code Execution Vulnerability
mailing-list
x_refsource_FULLDISC
20070323 Microsoft Windows Vista - Windows Mail Client Side Code Execution Vulnerability
mailing-list
x_refsource_FULLDISC
MS07-034
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:1861
vdb-entry
signature
x_refsource_OVAL
http://news.com.com/2100-1002_3-6170133.html
x_refsource_MISC
SSRT071438
vendor-advisory
x_refsource_HP
win-mail-code-execution(33167)
vdb-entry
x_refsource_XF
1017816
vdb-entry
x_refsource_SECTRACK
23103
vdb-entry
x_refsource_BID
20070323 Re: Microsoft Windows Vista - Windows Mail Client Side Code Execution Vulnerability
mailing-list
x_refsource_FULLDISC
TA07-163A
third-party-advisory
x_refsource_CERT
25639
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2154
vdb-entry
x_refsource_VUPEN
http://isc.sans.org/diary.html?storyid=2507
x_refsource_MISC
HPSBST02231
vendor-advisory
x_refsource_HP
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now