CVE-2010-0486

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, Server 2008 Gold, SP2, and R2, and Windows 7

Description A remote code execution issue exists in the Windows Authenticode Signature Verification function, affecting portable executable (PE) and cabinet file formats. This allows an attacker to modify an existing signed executable file, adding malicious code without invalidating the signature. If successfully exploited, an attacker could gain complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, Server 2008 Gold, SP2, and R2, and Windows 7, update the Authenticode Signature Verification function to properly validate file digests and prevent arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.