mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-24 03:24:01 +02:00
0xMarcio
915 B
915 B
CVE-2008-0951
Description
Microsoft Windows Vista does not properly enforce the NoDriveTypeAutoRun registry value, which allows user-assisted remote attackers, and possibly physically proximate attackers, to execute arbitrary code by inserting a (1) CD-ROM device or (2) U3-enabled USB device containing a filesystem with an Autorun.inf file, and possibly other vectors related to (a) AutoRun and (b) AutoPlay actions.