MS04-024: Vulnerability in Windows Shell Could Allow Remote Code Execution

My Océ

Contact Océ

MS04-024: Vulnerability in Windows Shell Could Allow Remote Code Execution

This update resolves a newly-discovered, publicly reported vulnerability. A
remote code execution vulnerability exists in the way that the Windows Shell
launches applications.

If a user is logged on with administrative privileges, an attacker who
successfully exploited this vulnerability could take complete control of an
affected system, including installing programs; viewing, changing, or deleting
data; or creating new accounts with full privileges. However, significant user
interaction is required to exploit this vulnerability. Users whose accounts are
configured to have fewer privileges on the system would be at less risk than
users who operate with administrative privileges.

Océ systems	Vulnerability	Recommended action
Océ TDS300 1.x Océ TDS400 1.x 2.x Océ TDS600 3.x 4.x Océ TDS800 1.x 2.x Océ TCS400 2.x	Not vulnerable	None
Océ DPS400 Océ VP2105	Not vulnerable	None
Océ VP2090 Océ VP2110 Océ VP3090	Not vulnerable	None
Océ 900C	These systems may be affected by this security issue	Download Microsoft patch
Océ 950C	These systems may be affected by this security issue	Download Microsoft patch
Océ 910C Océ 960C Océ 1000C	These systems may be affected by this security issue	Automatic System Update »

Océ Corporate Site

Home \| Products \| Software \| Services \| Solutions \| Support \| Supplies

Privacy policy \| Terms of use \| Other Océ websites »

	© 2008 Océ

	All rights reserved