CVE-2008-4268

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version

Description: A remote code execution issue exists due to improper memory handling during the saving of a search file. This allows attackers to execute arbitrary code via a crafted saved-search file. The issue arises when saving a specially crafted search file within Windows Explorer, causing it to exit and restart in an exploitable manner.

Recommendations: For Microsoft Windows Vista Gold and SP1 and Server 2008, update to a version that includes the fix for this issue. For other affected versions of Microsoft Windows, apply the necessary patch or update to resolve the vulnerability. As a temporary workaround, consider avoiding the use of saved-search files in Windows Explorer until a patch is available.