CVE-2007-1090
published 2007-02-26CVE-2007-1090: Microsoft Windows Explorer on Windows XP and 2003 allows remote user-assisted attackers to cause a denial of service (crash) via a malformed WMF file, which…
PriorityP424high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
16.39%
96.6th percentile
Microsoft Windows Explorer on Windows XP and 2003 allows remote user-assisted attackers to cause a denial of service (crash) via a malformed WMF file, which triggers the crash when the user browses the folder.
Detection & IOCsextracted from sources · hover to see the quote
- →Malicious WMF file triggers crash in Windows Explorer when a user merely browses the containing folder — no file open action required. Monitor for anomalous WMF files dropped in shared/browsable directories. ↗
- →Look for WMF files containing a large NOP sled (repeated 0x90 bytes) within the WMF record payload, which is characteristic of this PoC and potential weaponised variants. ↗
- ·This vulnerability affects Windows Explorer on Windows XP and 2003 only; the crash is a denial of service and no code execution has been confirmed for this specific CVE. ↗
- ·This issue may be related to two other WMF-based vulnerabilities (BID 19365 and BID 21992); detections should be cross-referenced against those to avoid false-negative gaps. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/34490http://securityvulns.com/Qdocument170.htmlhttp://securityvulns.com/news/Microsoft/Windows/Explorer/DoS.htmlhttp://www.securityfocus.com/archive/1/461373/100/0/threadedhttp://www.securityfocus.com/bid/22715http://osvdb.org/34490http://securityvulns.com/Qdocument170.htmlhttp://securityvulns.com/news/Microsoft/Windows/Explorer/DoS.htmlhttp://www.securityfocus.com/archive/1/461373/100/0/threadedhttp://www.securityfocus.com/bid/22715
2007-02-26
Published