CVE-2007-1658

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista

Description: The issue allows remote attackers to execute certain programs via a link to a local file or UNC share pathname. This can occur when there is a directory with the same base name as an executable program at the same level. For example, this can be demonstrated using C:/windows/system32/winrm (winrm.cmd) and migwiz (migwiz.exe).

Recommendations: For Microsoft Windows Vista, consider restricting access to executable programs with the same base name as directories to minimize the risk of exploitation. As a temporary workaround, avoid using links to local files or UNC share pathnames that could lead to the execution of unintended programs. At the moment, there is no information about a newer version that contains a fix for this vulnerability.