Vulnerabilities

CVE-2008-1457

by Fred · 13/08/2008

The Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate per-user subscriptions, which allows remote authenticated users to execute arbitrary code via a crafted event subscription request.

Date published : 2008-08-13

http://www.securityfocus.com/bid/30584

http://www.us-cert.gov/cas/techalerts/TA08-225A.html

Similar

Tags: Cybersecurity Alert