#XP EMBEDDED SUPPORT UPDATE#
This is the Microsoft Windows XP Embedded with Service Pack 1 component update to address MS03-040: Cumulative Patch for Internet Explorer (828750). See the Windows XP Embedded System Requirements for details Requires the English Version of Windows XP Embedded with Service Pack 1. Supported Operating Systems: Windows 2000, Windows Server 2003, Windows XP, Windows XP Embedded YOU MAY NOT PROVIDE THIS UPDATE OR THE LOCATION (URL) OF THIS UPDATE TO ANY THIRD PARTIES. A successful attack could have the effect of either causing the Windows shell to fail, or causing an attackers code to run on the users computer in the security context of the user. If a user were to browse the shared folder where the file was stored, the vulnerability could then be exploited. A security vulnerability results because it is possible for a malicious user to construct an attack that could exploit this flaw and execute code on the users system.Īn attacker could seek to exploit this vulnerability by creating a Desktop.ini file that contains a corrupt custom attribute, and then host it on a network share. It also provides a variety of other functions to help define the user's computing session, including organizing files and folders, and providing the means to start programs.Īn unchecked buffer exists in one of the functions used by the Windows shell to extract custom attribute information from certain folders. It is most familiar to users as the Windows desktop.
The Windows shell is responsible for providing the basic framework of the Windows user interface experience. This is the Microsoft Windows XP Embedded with Service Pack 1 component update to address MS03-027: Unchecked Buffer in Windows Shell Could Enable System Compromise (821557).