CVE Vulnerabilities

CVE-2003-0350

Published: Aug 18, 2003 | Modified: Apr 30, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a Shatter style message to the Utility Manager that references a user-controlled callback function.

Affected Software

Name Vendor Start Version End Version
Windows_2000 Microsoft * *

References