ID CVE-2004-0420
Summary The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:ie:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:ie:6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:ie:6.0.2800.1106:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:ie:6.0.2800.1106:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 12-10-2018 - 21:34)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
oval via4
  • accepted 2011-05-16T04:02:26.602-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
    family windows
    id oval:org.mitre.oval:def:2245
    status accepted
    submitted 2004-07-14T12:00:00.000-04:00
    title Windows XP (32-bit,SP2/64-bit,SP1) Shell CLSID File Type Spoof Vulnerability
    version 70
  • accepted 2011-05-09T04:01:28.440-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    description The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
    family windows
    id oval:org.mitre.oval:def:2381
    status accepted
    submitted 2004-07-14T12:00:00.000-04:00
    title Windows Server 2003 Shell CLSID File Type Spoof Vulnerability
    version 66
  • accepted 2011-05-09T04:01:29.520-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    description The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
    family windows
    id oval:org.mitre.oval:def:2894
    status accepted
    submitted 2004-07-14T12:00:00.000-04:00
    title Windows XP (64-bit Gold) Shell CLSID File Type Spoof Vulnerability
    version 66
  • accepted 2011-05-16T04:02:46.089-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
    family windows
    id oval:org.mitre.oval:def:3386
    status accepted
    submitted 2004-10-04T01:00:00.000-04:00
    title Windows 2000 Shell CLSID File Type Spoof Vulnerability
    version 70
  • accepted 2011-05-16T04:02:49.354-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
    family windows
    id oval:org.mitre.oval:def:3533
    status accepted
    submitted 2004-07-14T12:00:00.000-04:00
    title Windows XP Shell CLSID File Type Spoof Vulnerability
    version 71
  • accepted 2008-03-24T04:00:30.461-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Jeff Cheng
      organization Opsware, Inc.
    • name Jonathan Baker
      organization The MITRE Corporation
    definition_extensions
    comment Microsoft Windows NT is installed
    oval oval:org.mitre.oval:def:36
    description The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP.
    family windows
    id oval:org.mitre.oval:def:3604
    status accepted
    submitted 2004-10-04T01:00:00.000-04:00
    title Windows NT Shell CLSID File Type Spoof Vulnerability
    version 70
refmap via4
bid 9510
bugtraq
  • 20040127 GOOROO CROSSING: File Spoofing Internet Explorer 6
  • 20040127 RE: GOOROO CROSSING: File Spoofing Internet Explorer 6
cert TA04-196A
cert-vn VU#106324
ms MS04-024
secunia 10736
xf ie-clsid-file-extension-spoofing(14964)
Last major update 12-10-2018 - 21:34
Published 07-07-2004 - 04:00
Back to Top