Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939) |
Informations | |||
---|---|---|---|
Name | MS07-018 | First vendor Publication | 2007-04-10 |
Vendor | Microsoft | Last vendor Modification | 2007-04-10 |
Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
This update resolves two newly discovered, privately reported vulnerabilities. Each vulnerability is documented in the "Vulnerability Details" section of this bulletin.. We recommend that customers apply the update immediately. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/ms07-018.mspx?pubDate=2 (...) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:1575 | |||
Oval ID: | oval:org.mitre.oval:def:1575 | ||
Title: | CMS Cross-Site Scripting and Spoofing Vulnerability | ||
Description: | Cross-site scripting (XSS) vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving HTML redirection queries, aka "Cross-site Scripting and Spoofing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-0939 | Version: | 8 |
Platform(s): | Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Microsoft Content Management Server 2001 Microsoft Content Management Server 2002 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:2001 | |||
Oval ID: | oval:org.mitre.oval:def:2001 | ||
Title: | CMS Memory Corruption Vulnerability | ||
Description: | Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2 does not properly handle certain characters in a crafted HTTP GET request, which allows remote attackers to execute arbitrary code, aka the "CMS Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-0938 | Version: | 8 |
Platform(s): | Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Microsoft Content Management Server 2001 Microsoft Content Management Server 2002 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
34007 | Microsoft Content Management Server (CMS) Unspecified XSS Microsoft Content Management Server (2001/2002) contains a flaw that allows a remote cross site scripting attack. This flaw exists because unspecified input is not properly sanitized before being returned to users. This vulnerability can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site, leading to a loss of integrity and confidentially |
34006 | Microsoft Content Management Server (CMS) Crafted HTTP Request Memory Corruption A remote overflow exists in Microsoft Content Management Server. The CMS fails to sanitize input resulting in memory corruption. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2007-04-12 | IAVM : 2007-B-0007 - Multiple Vulnerabilities in Microsoft Content Management Server Severity : Category I - VMSKEY : V0013935 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Content Management Server memory corruption RuleID : 11191 - Revision : 13 - Type : SERVER-IIS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2007-04-11 | Name : A remote user can execute arbitrary code on the remote host. File : smb_nt_ms07-018.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:45:38 |
|
2014-01-19 21:30:04 |
|
2013-11-11 12:41:05 |
|
2013-05-11 12:21:59 |
|