Microsoft · Windows Xp · CVE-2003-0306
Name of the Vulnerable Software and Affected Versions:
Windows XP
Description:
A buffer overflow issue in EXPLORER.EXE allows attackers to execute arbitrary code as the XP user. This is achieved via a desktop.ini file with a long `.ShellClassInfo` parameter.
Recommendations:
For Windows XP, consider restricting access to the desktop.ini file to minimize the risk of exploitation. As a temporary workaround, avoid using long `.ShellClassInfo` parameters in desktop.ini files until a patch is available.