MS03-027: Buffer overrun in Windows Shell (821557)
High Nessus Plugin ID 11792
SynopsisArbitrary code can be executed on the remote host through Explorer.
DescriptionThe remote host is running a version of Windows that has a flaw in its shell. An attacker could exploit it by creating a malicious Desktop.ini file, putting it on a shared folder and waiting for someone to browse it.
SolutionMicrosoft has released a set of patches for Windows XP.