HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
Those of you still running Windows 2000 and Windows XP should know that Microsoft is investigating a new moderately critical flaw that could allow malicious code to be executed. Those poor, poor executed codes. Won't someone please think of the codes?
A vulnerability has been discovered in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error in the "UpdateFrameTitleForDocument()" function of the CFrameWnd class in mfc42.dll. This can be exploited to cause a stack-based buffer overflow by passing an overly long title string argument to the affected function. Successful exploitation may allow execution of arbitrary code.