4.3 - MS12-066

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege

Informations
Name	MS12-066	First vendor Publication	2012-10-09
Vendor	Microsoft	Last vendor Modification	2014-01-15
Severity (Vendor)	Version	Revision	1.4

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Severity Rating: Important
Revision Note: V1.4 (January 15, 2014): Bulletin revised to announce a detection change in update 2687356 (a.k.a. 2687442). This is a detection change only. Customers who have already successfully updated their systems do not need to take any action. Note that update 2687356 is offered through Microsoft Update as update 2687442.
Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Office, Microsoft Communications Platforms, Microsoft Server software, and Microsoft Office Web Apps. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user. clicks a specially crafted URL that takes the user to a targeted SharePoint site.

Original Source

Url : https://technet.microsoft.com/en-us/library/security/MS12-066

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:14976

Oval ID:	oval:org.mitre.oval:def:14976
Title:	Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege - MS12-066
Description:	Cross-site scripting (XSS) vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010 SP1, and Office Web Apps 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted string, aka "HTML Sanitization Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-2520	Version:	13
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Microsoft Communicator 2007 R2 Microsoft Groove Server 2010 Microsoft InfoPath 2007 Microsoft InfoPath 2010 Microsoft Lync 2010 Microsoft Lync 2010 Attendee Microsoft Office Web Apps 2010 Microsoft SharePoint Foundation 2010 Microsoft SharePoint Server 2007 Microsoft SharePoint Server 2010 Microsoft SharePoint Services 3.0
Definition Synopsis:
infopath 2007/version Check if the version of ipeditor.dll is less than 12.0.6662.5004 AND Microsoft InfoPath 2007 Service Pack 2 is installed OR infopath 2010/version Microsoft InfoPath 2010 is installed AND Check if the version of ipeditor.dll is less than 14.0.6126.5000 OR sharepoint foundation 2010/version Check if the version of onfda.dll is less than 14.0.6123.5000 AND Microsoft SharePoint Foundation 2010 Service Pack 1 is installed OR sharepoint server 2007/version Check if the version of Microsoft.office.server.dll is less than 12.0.6650.5000 AND sharepoint server 2007 sp2/sp3 Microsoft Office SharePoint Server 2007 SP2 is installed AND Microsoft Office SharePoint Server 2007 SP3 is installed OR sharepoint server 2010/version Check if the version of Microsoft.office.server.dll is less than 14.0.6114.5000 AND Microsoft SharePoint Server 2010 Service Pack 1 is installed OR sharepoint services 3.0/version Check if the version of onetutil.dll is less than 12.0.6665.5000 AND sharepoint services 3.0 sp2/sp3 Microsoft SharePoint Services 3.0 SP3 is installed AND Microsoft Windows SharePoint Services 3.0 SP2 is installed OR groove server 2010/version Check if the version of groovers.dll is less than 14.0.6123.5005 AND Microsoft Groove Server 2010 Service Pack 1 is installed OR microsoft lync 2010/version Check if the version of communicator.exe is less than 4.0.7577.4109 (for Lync 2010) AND Microsoft Lync 2010 is installed OR lync 2010 attendee (user) Check if the version of uc.dll is less than 4.0.7577.4103 (user install) AND Microsoft Lync 2010 Attendee (user level install) is installed OR lync 2010 attendee (admin) CHeck if the version of uc.dll is less than 4.0.7577.4103 (admin install) AND Microsoft Lync 2010 Attendee (admin level install) is installed OR communicator 2007 R2/version Check if the version of communicator.exe is less than 3.5.6907.261 AND Microsoft Communicator 2007 R2 is installed OR infopath 2007 sp3/version Check if the version of infopath.exe is less than 12.0.6662.5004 AND Microsoft InfoPath 2007 Service Pack 3 is installed OR office web apps 2010/version Check if the version of Msoserver.dll is less than 14.0.6123.5001 AND Microsoft Office Web Apps 2010 Service Pack 1 is installed OR infopath 2010 sp1/version Microsoft InfoPath 2010 SP1 is installed AND Check if the version of infopath.exe is less than 14.0.6123.5006

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Groove Server cpe:2.3:a:microsoft:groove_server:2010:sp1::::::	1
Application	Microsoft Infopath cpe:2.3:a:microsoft:infopath:2010:sp1:::::: cpe:2.3:a:microsoft:infopath:2007:sp2::::::	2
Application	Microsoft Lync cpe:2.3:a:microsoft:lync:2010::attendee::::: cpe:2.3:a:microsoft:lync:2010:::::::*	2
Application	Microsoft Office Communicator cpe:2.3:a:microsoft:office_communicator:2007:r2::::::	1
Application	Microsoft Office Web Apps cpe:2.3:a:microsoft:office_web_apps:2010:sp1::::::	1
Application	Microsoft Sharepoint Foundation cpe:2.3:a:microsoft:sharepoint_foundation:2010:sp1::::::	1
Application	Microsoft Sharepoint Server cpe:2.3:a:microsoft:sharepoint_server:2010:sp1:::::: cpe:2.3:a:microsoft:sharepoint_server:2007:sp2:::::: cpe:2.3:a:microsoft:sharepoint_server:2007:sp3::::::	3
Application	Microsoft Sharepoint Services cpe:2.3:a:microsoft:sharepoint_services:3.0:sp2::::::	1

OpenVAS Exploits

Date	Description
2012-10-10	Name : Microsoft Products HTML Sanitisation Component XSS Vulnerability (2741517) File : nvt/secpod_ms12-066.nasl

Snort® IPS/IDS

Date	Description
2014-01-10	Microsoft multiple product toStaticHTML XSS attempt RuleID : 23137 - Revision : 11 - Type : BROWSER-IE
2014-01-10	Microsoft multiple product toStaticHTML XSS attempt RuleID : 23136 - Revision : 11 - Type : BROWSER-IE

Nessus® Vulnerability Scanner

Date	Description
2012-10-10	Name : The remote host is affected by a privilege escalation vulnerability. File : smb_nt_ms12-066.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2016-04-27 01:59:58	Multiple Updates
2014-05-06 11:35:06	Multiple Updates
2014-05-06 11:31:59	Multiple Updates
2014-04-19 00:26:06	Multiple Updates
2014-04-19 00:17:28	Multiple Updates
2014-04-18 21:28:35	Multiple Updates
2014-04-18 21:18:48	Multiple Updates
2014-04-18 17:26:21	Multiple Updates
2014-04-18 17:17:54	Multiple Updates
2014-04-18 13:29:51	Multiple Updates
2014-04-18 13:18:42	Multiple Updates
2014-04-18 09:27:07	Multiple Updates
2014-04-18 09:18:06	Multiple Updates
2014-04-18 05:27:59	Multiple Updates
2014-04-18 05:19:16	Multiple Updates
2014-04-18 00:26:18	Multiple Updates
2014-04-18 00:17:41	Multiple Updates
2014-04-17 21:25:56	Multiple Updates
2014-04-17 21:18:34	Multiple Updates
2014-04-17 17:26:35	Multiple Updates
2014-04-17 17:17:49	Multiple Updates
2014-04-17 13:29:28	Multiple Updates
2014-04-17 13:18:48	Multiple Updates
2014-04-17 09:07:46	Multiple Updates
2014-02-17 11:47:27	Multiple Updates
2014-01-19 21:30:53	Multiple Updates
2014-01-16 00:22:34	Multiple Updates
2014-01-16 00:16:10	Multiple Updates
2013-11-04 21:33:30	Multiple Updates
2013-05-11 00:50:03	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	1
CPE ID(s)	12
Openvas Exploit(s)	1
Snort® Rule(s)	2
Nessus® Exploit(s)	1

	Related
10	MS13-067
10	MS12-078
10	MS12-075
10	MS12-054
9.3	MS15-116
9.3	MS13-041
9.3	MS12-082
9.3	MS12-081
9.3	MS12-079
9.3	MS12-077
9.3	MS12-076
9.3	MS12-074
9.3	MS12-072
9.3	MS12-071
9.3	MS12-065
9.3	MS12-064
9.3	MS12-063
9.3	MS12-060
9.3	MS12-059
9.3	MS12-057
9.3	MS12-056
9.3	MS12-053
9.3	MS12-052
9.3	MS12-048
9.3	MS12-045
9.3	MS12-044
9.3	MS12-043
9.3	MS12-039
9.3	MS12-038
9.3	MS12-037
9.3	MS12-036
9.3	MS12-035
9.3	MS12-034
9.3	MS12-031
9.3	MS12-030
9.3	MS12-029
9.3	MS12-028
9.3	MS12-027
9.3	MS12-025
9.3	MS12-024
9.3	MS12-023
9.3	MS12-022
9.3	MS12-020
9.3	MS12-016
9.3	MS12-015
9.3	MS12-014
9.3	MS12-013
9.3	MS12-012
9.3	MS12-010
9.3	MS12-008
9.3	MS12-005
9.3	MS12-004
9.3	MS12-002
9.3	MS12-001
8.3	MS12-042
7.8	MS13-024
7.2	MS12-068
7.2	MS12-055
7.2	MS12-047
7.2	MS12-041
7.2	MS12-033
7.2	MS12-032
7.2	MS12-018
7.2	MS12-009
6.9	MS12-051
6.9	MS12-046
6.9	MS12-021
6.9	MS12-003
6.8	MS12-050
6	MS15-047
5.8	MS12-083
5.8	MS12-026
5	MS12-073
5	MS12-069
5	MS12-017
4.3	MS13-035
4.3	MS12-070
4.3	MS12-062
4.3	MS12-061
4.3	MS12-049
4.3	MS12-040
4.3	MS12-019
4.3	MS12-011
4.3	MS12-007
4.3	MS12-006
4.3	CVE-2012-2520
3.5	MS12-080
2.1	MS12-067
2.1	MS12-058
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 89 more Alert(s)