CVE-2003-0908

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000

Description The issue allows local users to execute arbitrary code via a "Shatter" style attack. This is achieved by using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialog in the Help window.

Recommendations For Microsoft Windows 2000, at the moment, there is no information about a newer version that contains a fix for this vulnerability.