CVE-2010-0487

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue arises from the improper use of unspecified fields in a file digest by the Authenticode Signature verification functionality, allowing remote attackers to execute arbitrary code via a modified cabinet file that incorrectly appears to have a valid signature. A remote code execution vulnerability exists in the Windows Authenticode Signature verification for cabinet file formats, which could be exploited by an anonymous attacker modifying an existing signed cabinet file to point to malicious code and convincing a user to open the specially crafted file. This could allow an attacker to take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows versions prior to the fixed version, update to a version that includes the fix for the Cabview Corruption Validation Vulnerability to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.