Products  |  Software  |  Services  |  Solutions  |  Support  |  Supplies  
HomeSupportSecurityMS05-020
My OcéContact Océ
MS 07-061: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460)
/NR/rdonlyres/eor7ve7hxwkjdk43iidczzspz7rvxd6voteqfszflsvbsgseb3hwlndaikano6gyn3hiepyemwt46d/_TemplateResource1.gif

This update resolves a publicly reported vulnerability. A remote code e
xecution vulnerability exists in the way that the Windows shell handles specially
crafted URIs that are passed to it. If the Windows shell did not sufficiently
validate these URIs, an attacker could exploit this vulnerability and execute
arbitrary code. Microsoft has only identified ways to exploit this vulnerability
on systems using Internet Explorer 7. However, the vulnerability exists in a
Windows file, Shell32.dll, which is included in all supported editions of
Windows XP and Windows Server 2003.

Océ systems Vulnerability / Status Recommended action
Océ TDS300 1.x
Océ TDS320 1.x
Océ TDS400 2.x
Océ TDS450 1.x
Océ TDS600 4.x
Océ TDS700 1.x
Océ TDS800 2.x
Océ TDS860 1.x
Océ TCS300 1.x
Océ TCS400 2.x
Océ TCS500 1.x
 Not vulnerable None
Océ DPS400
Océ VP2105		 Not vulnerable None
Océ VP2090
Océ VP21x0
Océ VP3xx0
 Not vulnerable None
Océ VP6xx0
 Not vulnerable None
Océ 900C
Océ 950C		 Under investigation Subscribe to email alerts
Océ 910C
Océ 960C
Océ 970C
Océ 1000C
Océ 1070C
 Under investigation Subscribe to email alerts
Océ IP-901
Océ IC-302
Océ IC-303
Océ IC-408
 Under investigation Subscribe to email alerts
Océ Corporate Site
  Home | Products | Software | Services | Solutions | Support | Supplies  
Privacy policy | Terms of use | Other Océ websites »
© 2008 Océ
All rights reserved