Back to main page

Windows Shell Remote Code Execution Vulnerability

Category:

Command Injection

Sub-category:

Shellcode

Severity:

high

Description:

Detects attempts to exploit a Remote Code Execution (RCE) vulnerability in Windows Shell that allows a remote attacker to run arbitrary code in the context of the current user. If the current user is logged on as an administrator, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with elevated privileges.