Arbitrary Code Execution Vulnerability in Web View of Windows Explorer

Arbitrary Code Execution Vulnerability in Web View of Windows Explorer

CVE-2005-2117 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attackers to execute arbitrary code.

Learn more about our Cis Benchmark Audit For Server Software.