CVE-2007-5145

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP (affected versions not specified)

Description The issue is related to multiple buffer overflows in system DLL files in Microsoft Windows XP, which can be exploited by user-assisted remote attackers to cause a denial of service, resulting in an application crash. This can occur when long strings are used in certain Properties fields of a file, such as author, title, subject, and comment. The vulnerability may involve improper handling of extended file attributes by various functions in ntdll.dll and kernel32.dll, including NtQueryInformationFile, NtQueryDirectoryFile, NtSetInformationFile, GetFileAttributesExW, and GetFileAttributesW.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.