Title

Microsoft Windows Common Control Library Remote Code Execution Vulnerability (Cat II impact)

Discussion

Microsoft has reported a vulnerability affecting Microsoft Windows Common Control Library. The common controls are a set of windows that are implemented by the common control library, Comctl32.dll, which is a DLL included with the Windows operating system. A common control is a child window that an application uses in conjunction with another window to enable interaction with the user. To exploit this vulnerability, an attacker would send a malicious request to an affected system. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code and compromise the affected system.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-40760

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.