CVE-2008-0080

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description A remote code execution issue exists in the way the WebDAV Mini-Redirector handles responses, allowing attackers to execute arbitrary code via a crafted WebDAV response. This could enable an attacker to take complete control of an affected system, install programs, view, change, or delete data, or create new accounts.

Recommendations For Microsoft Windows XP SP2, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003 SP1 and SP2, update to a version that includes the fix for this issue. For Microsoft Windows Vista, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the WebDAV Mini-Redirector until a patch is available.