Vigil@nce - Windows: code execution via BAT/CMD
April 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can invite the victim to open a remote BAT/CMD file on
Windows, in order to execute code.
Impacted products: Windows 2003, Windows 2008, Microsoft Windows
2012, Windows 7, Windows 8, Windows RT, Windows Vista, Windows XP
Severity: 2/4
Creation date: 08/04/2014
DESCRIPTION OF THE VULNERABILITY
Files with the .BAT or .CMD extension contain shell commands.
When these files are located on a remote share, Windows applies a
different security policy. However, an attacker can bypass this
policy, so these scripts are run. Technical details are unknown.
An attacker can therefore invite the victim to open a remote
BAT/CMD file on Windows, in order to execute code.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Windows-code-execution-via-BAT-CMD-14555