Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1327


Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1327
Last Modified 10 Sep 2008 03:14:18
Published 26 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Buffer overflow in the Windows Shell function in Microsoft Windows XP allows remote attackers to execute arbitrary code via an .MP3 or .WMA audio file with a corrupt custom attribute, aka "Unchecked Buffer in Windows Shell Could Enable System Compromise."

Vulnerable Systems

Operating System

  • Microsoft Windows Xp


CERT-VN - VU#591890

CERT - CA-2002-37

MS - MS02-072

BUGTRAQ - 20021219 Foundstone Research Labs Advisory - Exploitable Windows XP Media Files

XF - winxp-windows-shell-bo(10892)

BID - 6427

Last Updated: 27 May 2016 10:37:16