Home / bulletins MS10-046 - Critical: Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) - Version:1.1
Posted on 04 August 2010
There is an newer version: MS10-046 - Version: 1.2
CriticalSeverity Rating: Critical - Revision Note: V1.1 (August 3, 2010): Added an entry to the section, Frequently Asked Questions (FAQ) Related to This Security Update, to clarify why Server Core installations are affected.Summary: This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon of a specially crafted shortcut is displayed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Other versions
- MS10-046 - Version: 1.0
- MS10-046 - Version: 1.1
- MS10-046 - Version: 1.2