Microsoft Windows Shell File Association Vulnerability Exploit (MS14-027) Update

When the "HKEY_CURRENT_USER\Software\Classes\exefile" registry key is modified by this exploit and a Windows or third party service calls to the "ShellExecute" function, an invalid association file is produced, finalizing the attack with the execution of a crafted program instead of the original program. This update changes the module category from "Exploits/Tools" to "Exploits/Local".
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2014-1807
Product Version: 
2014_R2
Released Date: 
Wednesday, March 4, 2015 - 00:00