CVE-2012-1528

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue is related to an integer overflow in the Windows Shell, specifically in the Briefcase feature. This allows a local user to gain privileges via a crafted briefcase. A remote code execution vulnerability also exists, where an attacker could exploit the issue by convincing a user to open a specially crafted Windows Briefcase, potentially executing arbitrary code in the security context of the current user.

Recommendations For Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.