Insomnia Security Vulnerability Advisory – A flaw exists with the handling of malformed URL’s passed through the ShellExeute() API in Microsoft Windows. The vulnerability does not directly cause an issue within Windows itself however, applications that call the flawed API may be vulnerable to various attacks, one of which is shown in this report.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/86357/ISVA-100216.1.txt
Source: https://packetstormsecurity.com/files/86357/Insomnia-Security-Vulnerability-Advisory-100216.1.html