Ben Pryor

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows 2000 **Description** The issue allows local users to execute arbitrary code via a "Shatter" style attack. This is achieved by using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialog in the Help window. **Recommendations** For Microsoft Windows 2000, at the moment, there is no information about a newer version that contains a fix for this vulnerability.