mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-01 03:00:54 +00:00
894 B
894 B
CVE-2008-0951
Description
Microsoft Windows Vista does not properly enforce the NoDriveTypeAutoRun registry value, which allows user-assisted remote attackers, and possibly physically proximate attackers, to execute arbitrary code by inserting a (1) CD-ROM device or (2) U3-enabled USB device containing a filesystem with an Autorun.inf file, and possibly other vectors related to (a) AutoRun and (b) AutoPlay actions.
POC
Reference
Github
No PoCs found on GitHub currently.