Executive Summary
| Informations | |||
|---|---|---|---|
| Name | MS07-003 | First vendor Publication | 2007-01-09 |
| Vendor | Microsoft | Last vendor Modification | 2007-01-09 |
| Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| This update addresses several newly discovered, privately and publicly reported vulnerabilities. The vulnerabilities are documented in the “Vulnerability Details†section of this bulletin. When using vulnerable versions of Office, if a user is logged on with administrative user rights, an attacker who successfully exploited these vulnerabilities could take complete control of the system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately. |
Original Source
| Url : http://www.microsoft.com/technet/security/bulletin/ms07-003.mspx?pubDate=2 (...) |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 50 % | CWE-399 | Resource Management Errors |
| 50 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
| Definition Id:Â oval:org.mitre.oval:def:122 | |||
| Oval ID: | oval:org.mitre.oval:def:122 | ||
| Title: | Microsoft Outlook Denial of Service Vulnerability | ||
| Description: | Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to cause a denial of service (memory exhaustion and interrupted mail recovery) via malformed e-mail header information, possibly related to (1) long subject lines or (2) large numbers of recipients in To or CC headers. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2006-1305 | Version: | 5 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Outlook |
| Definition Synopsis: | |||
| Definition Id:Â oval:org.mitre.oval:def:153 | |||
| Oval ID: | oval:org.mitre.oval:def:153 | ||
| Title: | Microsoft Outlook Advanced Find Vulnerability | ||
| Description: | Buffer overflow in the Advanced Search (Finder.exe) feature of Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted Outlook Saved Searches (OSS) file that triggers memory corruption, aka "Microsoft Outlook Advanced Find Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2007-0034 | Version: | 5 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Outlook |
| Definition Synopsis: | |||
| Definition Id:Â oval:org.mitre.oval:def:516 | |||
| Oval ID: | oval:org.mitre.oval:def:516 | ||
| Title: | Microsoft Outlook VEVENT Vulnerability | ||
| Description: | Microsoft Outlook 2002 and 2003 allows user-assisted remote attackers to execute arbitrary code via a malformed VEVENT record in an .iCal meeting request or ICS file. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2007-0033 | Version: | 5 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Outlook |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 3 | |
| Application | 3 |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 31254 | Microsoft Outlook Advanced Find .oss File Handling Remote Code Execution A local overflow exists in Outlook. The Advanced Search function fails to validate the contents of .oss files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
| 31253 | Microsoft Outlook E-mail Header Processing Unspecified DoS Outlook contains an unspecified flaw that may allow a remote denial of service. The issue is triggered by an unspecified email header processing flaw, and will result in loss of availability for the program. |
| 31252 | Microsoft Outlook VEVENT Record Handling Remote Code Execution A remote memory corruption flaw exists in Outlook. The program fails to validate VEVENT records in .iCal meeting requests resulting in memory corruption. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Office Outlook Saved Search download attempt RuleID : 9847 - Revision : 14 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Outlook VEVENT overflow attempt RuleID : 9841 - Revision : 18 - Type : SERVER-MAIL |
| 2014-01-10 | Microsoft Office Outlook VEVENT overflow attempt RuleID : 21163 - Revision : 8 - Type : FILE-OFFICE |
| 2014-01-10 | Micrsoft Office Outlook VEVENT non-TZID overflow attempt RuleID : 10012 - Revision : 8 - Type : SMTP |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2007-01-09 | Name : Arbitrary code can be executed on the remote host through the email client. File : smb_nt_ms07-003.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:45:34 |
|
| 2014-01-19 21:30:03 |
|
| 2013-05-11 00:49:14 |
|
