MS11-038: Vulnerability in OLE Automation Could Allow Remote Code Execution (2476490)
High Nessus Plugin ID 55118
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe remote host is running a version of Windows that is affected by a remote code execution vulnerability. An attacker can exploit this by causing a user to visit a website containing a specially crafted Windows Metafile (WMF) image. Exploitation could allow an attacker to execute arbitrary code with the user's credentials.
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, 2008, 7, and 2008 R2.