Microsoft to fix the URL handling bugs in ShellExecute

[<rms () computerbytesman com>]

Hi,

Microsoft just fessed up that they have a bug that will be fixed:

Microsoft Security Advisory (943521)
URL Handling Vulnerability in Windows XP and Windows 
Server 2003 with Windows Internet Explorer 7 Could Allow 
Remote Code Execution

http://www.microsoft.com/technet/security/advisory/943521.mspx

MSRC Blog: Additional Details and Background on Security Advisory 943521
http://blogs.technet.com/msrc/archive/2007/10/10/msrc-blog-additional-detail
s-and-background-on-security-advisory-943521.aspx

Richard M. Smith
Boston Software Forensics


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.