MS07-005: Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723)
High Nessus Plugin ID 24329
SynopsisArbitrary code can be executed on the remote host through the training software.
DescriptionThe remote host is running a version of Microsoft Step-by-Step Interactive Training that contains a flaw that could lead to remote code execution.
To exploit this flaw, an attacker would need to trick a user on the remote host into opening a malformed file with the affected application.
SolutionMicrosoft has released a patch.