Microsoft · Terminal Server · CVE-2006-4465
**Name of the Vulnerable Software and Affected Versions**
Microsoft Terminal Server (affected versions not specified)
**Description**
The issue allows local users to execute arbitrary code by forcing an Explorer error when running an application session with specific options. These options, "Start program at logon" and "Override settings from user profile and Client Connection Manager wizard", were intended as a convenience to users and not to restrict the execution of arbitrary code.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.