CVE-2003-0306

Name of the Vulnerable Software and Affected Versions: Windows XP

Description: A buffer overflow issue in EXPLORER.EXE allows attackers to execute arbitrary code as the XP user. This is achieved via a desktop.ini file with a long .ShellClassInfo parameter.

Recommendations: For Windows XP, consider restricting access to the desktop.ini file to minimize the risk of exploitation. As a temporary workaround, avoid using long .ShellClassInfo parameters in desktop.ini files until a patch is available.