Windows Explorer Remote Code Execution Vulnerability - CVE-2017-8463ID: oval:org.secpod.oval:def:41276 | Date: (C)2017-07-13 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
A remote code execution vulnerability exists when Windows Explorer improperly handles executable files and shares during rename operations. An attacker who successfully exploited this vulnerability could run arbitrary code in the context of another user. Users not running as administrators would be less affected.To exploit this vulnerability, an attacker would first share both a folder and malware named with an executable extension, and then trick the user into thinking that the malware was the folder. The attacker could not force the user to open or browse the share but could use email or instant messages to trick them into doing so.The update addresses the vulnerability by correcting how Windows Explorer handles executable files and shares during rename operations.
Platform: |
Microsoft Windows 10 |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |