Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Authenticode Signature verification functionality in cabview.dll in Cabinet File Viewer Shell Extension 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly use unspecified fields in a file digest, which allows remote attackers to execute arbitrary code via a modified cabinet (aka .CAB) file that incorrectly appears to have a valid signature, aka "Cabview Corruption Validation Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows Cabinet File Viewer Cabview动态库'cabview.dll'远程代码执行漏洞
Vulnerability Description
Windows Cabinet File Viewer(cabview.dll)用于查看、打开、浏览和解压cabinet文件和档案。 Microsoft Windows Cabinet File Viewer Cabview动态库'cabview.dll'认证签名验证程序存在远程代码执行漏洞。Windows Cabinet File Viewer在签名和验证cabinet文件时忽略了文件digest的一些字段。匿名攻击者可以通过修改已有的签名cabinet文件以便将签名文件的未验证部分指向恶意代码然后诱骗
CVSS Information
N/A
Vulnerability Type
N/A