This script is Copyright (C) 2004-2017 Tenable Network Security, Inc.
It is possible to execute commands on the remote host.
The remote host is running a version of Windows that has a flaw in its
shell. An attacker could persuade a user on the remote host to execute
a rogue program by using a CLSID instead of a file type, thus fooling
the user into thinking that he will not execute an application but
simply open a document.
See also :
Microsoft has released a set of patches for Windows NT, 2000, XP and
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : true