Remote Code Execution Vulnerability in Windows Explorer - MS08-038
|ID: oval:org.secpod.oval:def:2646||Date: (C)2011-11-02 (M)2017-10-04|
|Class: PATCH||Family: windows|
The host is missing an important security update according to Microsoft security bulletin, MS08-038. The update is required to fix remote code execution vulnerability. A flaw is present in Windows Explorer, which fails handle a specially crafted saved-search file. Successful exploitation could allow an attacker to install programs, view, change, or delete data or create new accounts with full user rights.
|Microsoft Windows Server 2008|
|Microsoft Windows Vista|