=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2010/VULN054
_____________________________________________________________________

DATE                      : 10/02/2010

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Windows 2000, Windows Server 2003
                               Windows XP running Windows Shell Handler.

======================================================================
KB975713
http://www.microsoft.com/technet/security/bulletin/MS10-007.mspx
______________________________________________________________________

Microsoft Security Bulletin MS10-007 - Critical

Vulnerability in Windows Shell Handler Could Allow Remote Code Execution
(975713)

Published: February 09, 2010

Version: 1.0

General Information

Executive Summary

  This security update resolves a privately reported vulnerability in
  Microsoft Windows 2000, Windows XP, and Windows Server 2003. Other
  versions of Windows are not impacted by this security update. The
  vulnerability could allow remote code execution if an application,
  such as a Web browser, passes specially crafted data to the
  ShellExecute API function through the Windows Shell Handler.

  This security update is rated Critical for all supported editions
  of Microsoft Windows 2000, Windows XP, and Windows Server 2003.

  The security update addresses the vulnerability by correcting the way
  that the ShellExecute API validates input parameters.

  Recommendation. The majority of customers have automatic updating
  enabled and will not need to take any action because this security
  update will be downloaded and installed automatically. Customers who
  have not enabled automatic updating need to check for updates and
  install this update manually. For information about specific configuration
  options in automatic updating, see Microsoft Knowledge Base
  Article 294871.

  For administrators and enterprise installations, or end users who want to
  install this security update manually, Microsoft recommends that customers
  apply the update immediately using update management software, or by
  checking for updates using the Microsoft Update service.

  Known Issues. None

Affected Software

Microsoft Windows 2000 Service Pack 4
Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems

Vulnerability Information
	
URL Validation Vulnerability - CVE-2010-0027

  A remote code execution vulnerability exists in affected versions of
  Microsoft Windows. The vulnerability results from the incorrect
  validation of input sent to the ShellExecute API function. An attacker
  who successfully exploited this vulnerability could take complete control
  of an affected system.


======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================