Overview
Microsoft Windows Vista and Server 2008 contain a memory corruption vulnerability when saving a specially crafted search file. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Description
In Windows Vista and Server 2008, users can save searches as a search folder that is generated by a .search-ms XML file. Microsoft Windows fails to properly parse .search-ms files, which can result in memory corruption. |
Impact
By convincing a user to save a specially crafted search specified by a .search-ms file, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. |
Solution
Apply an update This vulnerability is addressed in Microsoft Security Bulletin MS08-075. This bulletin also includes several workarounds, including changing the file association for .search-ms files and denying the ability to save searches. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to Andre Protas of eEye for reporting this vulnerability.
This document was written by Will Dormann.
Other Information
| CVE IDs: | CVE-2008-4268 |
| Severity Metric: | 4.39 |
| Date Public: | 2008-12-09 |
| Date First Published: | 2008-12-09 |
| Date Last Updated: | 2008-12-09 19:42 UTC |
| Document Revision: | 6 |