Add or Remove Programs
entry for Sicherheitsupdate für Windows XP (KB921398)
. This security update for Windows XP addresses a vulnerability in Windows Explorer that could allow remote code execution.A remote code execution vulnerability exists in Windows Explorer because of the way that Windows Explorer handles Drag and Drop events. An attacker could exploit the vulnerability by constructing a malicious Web page that could potentially allow an attacker to save a file on the user’s system if a user visited a malicious Web site or viewed a malicious e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system. User interaction is required to exploit this vulnerability.