9.3 - MS06-039

Executive Summary

Informations
Name	MS06-039	First vendor Publication	N/A
Vendor	Microsoft	Last vendor Modification	N/A
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (915384)

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:163

Oval ID:	oval:org.mitre.oval:def:163
Title:	Microsoft Office Remote Code Execution Using a Malformed PNG Vulnerability
Description:	Unspecified vulnerability in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via a crafted PNG image that triggers memory corruption when it is parsed.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-0033	Version:	3
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Office
Definition Synopsis:
vulnerable applications Microsoft Word 2003 is installed AND Microsoft Office 2000 is installed AND Microsoft Project 2002, SP1 is installed AND Microsoft Office 2002 is installed AND the version of Png32.flt is less than 2003.1100.8029.0

Definition Id: oval:org.mitre.oval:def:21

Oval ID:	oval:org.mitre.oval:def:21
Title:	Microsoft Office Remote Code Execution Using a Malformed GIF Vulnerability
Description:	Buffer overflow in GIFIMP32.FLT, as used in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via a crafted GIF image that triggers memory corruption when it is parsed.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-0007	Version:	1
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Office
Definition Synopsis:
vulnerable applications Microsoft Word 2003 is installed AND Microsoft Office 2000 is installed AND Microsoft Project 2002, SP1 is installed AND Microsoft Office 2002 is installed AND Microsoft Project 2000, SP1 is installed AND the version of Gifimp32.flt is less than 2003.1100.8020.0

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Office cpe:2.3:a:microsoft:office:2003:sp1:::::: cpe:2.3:a:microsoft:office:2003:sp2:::::: cpe:2.3:a:microsoft:office:2000:sp3:::::: cpe:2.3:a:microsoft:office:xp:sp3::::::	4

OpenVAS Exploits

Date	Description
2009-02-27	Name : Fedora Update for kernel FEDORA-2007-225 File : nvt/gb_fedora_2007_225_kernel_fc5.nasl
2009-02-27	Name : Fedora Update for kernel FEDORA-2007-226 File : nvt/gb_fedora_2007_226_kernel_fc6.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
27147	Microsoft Office PNG Processing Unspecified Code Execution A local overflow exists in Microsoft Office, Project and Works Suite. The PNG filter (PNG32.FLT) fails to validate PNG files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.
27146	Microsoft Office GIFIMP32.FLT GIF Parsing Overflow A local overflow exists in Microsoft Office, Project and Works Suite. GIFIMP32.FLT fails to validate GIF image files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Snort® IPS/IDS

Date	Description
2014-01-10	Microsoft Office GIF image descriptor memory corruption attempt RuleID : 8414 - Revision : 16 - Type : FILE-OFFICE
2014-01-10	Microsoft Office GIF image descriptor memory corruption attempt RuleID : 17664 - Revision : 11 - Type : FILE-OFFICE

Nessus® Vulnerability Scanner

Date	Description
2007-02-15	Name : The remote Fedora Core host is missing a security update. File : fedora_2007-225.nasl - Type : ACT_GATHER_INFO
2007-02-15	Name : The remote Fedora Core host is missing a security update. File : fedora_2007-226.nasl - Type : ACT_GATHER_INFO
2006-07-11	Name : Arbitrary code can be executed on the remote host through the Microsoft Offic... File : smb_nt_ms06-039.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:45:26	Multiple Updates
2014-01-19 21:30:00	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	2
CPE ID(s)	4
osvdb(s)	2
Openvas Exploit(s)	2
Snort® Rule(s)	2
Nessus® Exploit(s)	3

	Related
9.3	MS08-044
9.3	CVE-2006-0033
9.3	CVE-2006-0007
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 3 more Alert(s)

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0390s

Facebook rss twitter linkedin mail