Microsoft Windows shlwapi.dll Malformed HTML Tag Handling Null Pointer DoS

Medium Nessus Plugin ID 11583


It is possible to crash the remote web client.


The remote host is running a version of the shlwapi.dll which crashes when processing a malformed HTML form.

An attacker may use this flaw to prevent the users of this host from working properly.

To exploit this flaw, an attacker would need to send a malformed HTML file to the remote user, either by email or by making the user visit a rogue website.



Plugin Details

Severity: Medium

ID: 11583

File Name: shlwapi_dll_dos.nasl

Version: $Revision: 1.17 $

Type: local

Agent: windows

Family: Windows

Published: 2003/05/06

Modified: 2015/01/12

Dependencies: 13855

Risk Information

Risk Factor: Medium


Base Score: 4.3

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:W/RC:ND

Vulnerability Information

Required KB Items: SMB/Registry/Enumerated

Excluded KB Items: SMB/samba

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2003/04/21

Reference Information

BID: 7402

OSVDB: 11936