Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     

  Technical Updates @ TACKtech Corp.  

10.15.2003 - MS03-041: Vulnerability in Authenticode Verification Could Allow Remote Code Execution (823182)



View Microsoft related news. There is a vulnerability in Authenticode that, under certain low memory conditions, could allow an ActiveX control to download and install without presenting the user with an approval dialog.

To exploit this vulnerability, an attacker could host a malicious Web Site designed to exploit this vulnerability. If an attacker then persuaded a user to visit that site an ActiveX control could be installed and executed on the user’s system. Alternatively, an attacker could create a specially formed HTML e-mail and send it to the user. If the user viewed the HTML e-mail an unauthorized ActiveX control could be installed and executed on the user’s system. In both scenarios the vulnerability in Authenticode could allow an unauthorized ActiveX control to be installed and executed on the user’s system, with the same permissions as the user, without prompting the user for approval.

- Download Windows NT Workstation 4.0 SP6a Patch
- Download Windows NT Server 4.0 SP6a Patch
- Download Windows NT Server 4.0,Terminal Server Edition SP6 Patch
- Download Windows 2000 SP2 Patch
- Download Windows 2000 SP3 & SP4 Patch
- Download Windows XP SP1 Patch
- Download Windows XP 64-Bit Edition Patch
- Download Windows XP 64-Bit Edition Version 2003 Patch
- Download Windows Server 2003 Patch
- Download Windows Server 2003 64 bit Edition Patch
- View Microsoft Knowledge Base Article - 823182
- View Microsoft Security Bulletin
- View Microsoft End User Security Bulletin
- Visit Microsoft Corporation

NID: 1480 / Submitted by: TACKtech Team
Categories: Microsoft, Patches and Updates
Most recent Microsoft related news.
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - Version: 1.1
MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 3.0
MS16-087 - Critical: Security Update for Windows Print Spooler Components (3170005) - Version: 2.0
MS16-095 - Critical: Cumulative Security Update for Internet Explorer (3177356) - Version: 3.0
MS16-039 - Critical: Security Update for Microsoft Graphics Component (3148522) - Version: 4.0
View archive of Microsoft related news.
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
.....