Microsoft Security Advisory 935423 Posted

Hey everyone this is Adrian Stone,

I wanted to let people know that we have just posted Microsoft Security Advisory (935423). This advisory addresses new public reports of very limited attacks against a newly reported vulnerability in Microsoft Windows Animated cursor handling. We’ve activated our Software Security Incident Response Process (SSIRP) and there are few items worth noting:

In order for this attack to be carried out, a user must either visit a Web site that contains a Web page that is used to exploit the vulnerability, view a specially crafted e-mail message, or opening a specially crafted email attachment sent to them by an attacker.

While the attack appears to be targeted and not widespread we are monitoring the issue and will update the Advisory and blog as new information becomes available.

Microsoft has added detection to the Windows Live OneCare safety scanner for up-to-date removal of malicious software that attempts to exploit this vulnerability and we will be working with our MSRA partners to monitor and help protect customers.



I also just wanted to drop in and make a quick update as our Secure Windows Initiative Team has been hard at work analyzing the issue throughout the day and we have identified some additional info regarding e-mail and its role as a mitigation and workaround for this attack. The mains points are:


  • If you are reading Outlook 2007 you are protected regardless of if you are reading the mail as plain text or not.

  • If you are reading email using Windows Mail on Vista you are protected as long are not forwarding or replying to the attackers email. 

  • Regardless of if you are reading your mail in plain text on Outlook Express you are not protected.

*This posting is provided "AS IS" with no warranties, and confers no rights.* 

Comments (8)

  1. Anonymous says:

    Microsoft Security Advisory (935423) Vulnerability in Windows Animated Cursor Handling Published: March

  2. Anonymous says:

    Microsoft warnt im Scruity Advisory KB935423 vor einer Sicherheitslcke in der Behandlung von animierten Mauszeigern (.ani Dateien) in allen hier untersttzten Windows-Versionen, ber die sich durch den Aufruf entsprechend prparierter Web-Seiten durch d

  3. Anonymous says:

    Windows Animated Cursor Handling vulnerability – CVE-2007-0038 Published: 2007-03-29, Last Updated: 2007-03-30

  4. Anonymous says:

    Hello everyone, This is Christopher Budd. We’ve gotten some questions from customers around the security

  5. Anonymous says:

    Update on Microsoft Security Advisory 935423 Hello everyone, This is Christopher Budd. We’ve gotten some

  6. Anonymous says:

    A few days ago Microsoft posted Security Advisory (935423) . Microsoft is investigating new public reports

  7. Anonymous says:

    [ li] The Internet Storm Center has declared a Yellow Alert to emphasize an increased risk in HTML based

  8. Anonymous says:

    The ANI exploit can be embedded and completely hidden in malicious HTML pages. Users can be easily become

Skip to main content