If you use an "animated" cursor (mouse pointer) on a Windows computer,
please exercise caution to avoid giving remote attackers a way to gain
unauthorized access to your computer.
Microsoft has investigated new public reports of attacks exploiting a vulnerability in the way Microsoft Windows handles animated cursor (.ani) files and has released a patch to correct the vulnerability. A user must either visit a Web site that contains a Web page that is used to exploit the vulnerability or view a specially crafted email message or email attachment sent to them by an attacker. Once this occurs the attacker can gain full remote access to the computer.
Affected applications include all versions of:
http://www.uvm.edu/ets/antivirus/?Page=faqs/win-cursor-vulnerability.html
Microsoft has investigated new public reports of attacks exploiting a vulnerability in the way Microsoft Windows handles animated cursor (.ani) files and has released a patch to correct the vulnerability. A user must either visit a Web site that contains a Web page that is used to exploit the vulnerability or view a specially crafted email message or email attachment sent to them by an attacker. Once this occurs the attacker can gain full remote access to the computer.
What systems and applications are affected?
Microsoft Windows 2000, XP, Server 2003, and Vista are affected.Affected applications include all versions of:
- Microsoft Windows
- Microsoft Internet Explorer
- Microsoft Outlook
- Microsoft Outlook Express
- Microsoft Windows Mail
- Microsoft Windows Explorer
http://www.uvm.edu/ets/antivirus/?Page=faqs/win-cursor-vulnerability.html