Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution |
Informations | |||
---|---|---|---|
Name | MS13-105 | First vendor Publication | 2013-12-10 |
Vendor | Microsoft | Last vendor Modification | 2013-12-10 |
Severity (Vendor) | Version | Revision | 1.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Severity Rating: Critical |
Original Source
Url : https://technet.microsoft.com/en-us/library/security/MS13-105 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
50 % | CWE-20 | Improper Input Validation |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:19040 | |||
Oval ID: | oval:org.mitre.oval:def:19040 | ||
Title: | MAC disabled vulnerability in Microsoft SharePoint and Microsoft Exchange Server (CVE-2013-1330) - MS13-067, MS13-105 | ||
Description: | The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3 and 2010 SP1 and SP2, and Office Web Apps 2010 does not set the EnableViewStateMac attribute, which allows remote attackers to execute arbitrary code by leveraging an unassigned workflow, aka "MAC Disabled Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2013-1330 | Version: | 9 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Microsoft Exchange Server 2007 Microsoft Exchange Server 2010 Microsoft Exchange Server 2013 Microsoft SharePoint Foundation 2010 Microsoft SharePoint Server 2007 Microsoft SharePoint Server 2010 Microsoft SharePoint Services 2.0 Microsoft SharePoint Services 3.0 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:20083 | |||
Oval ID: | oval:org.mitre.oval:def:20083 | ||
Title: | Oracle Outside In Contains Multiple Exploitable Vulnerabilities (CVE-2013-5791) - MS13-105 | ||
Description: | Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is a stack-based buffer overflow in the Microsoft Access 1.x parser in vsacs.dll before 8.4.0.108 and before 8.4.1.52, which allows attackers to execute arbitrary code via a long field (aka column) name. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2013-5791 | Version: | 5 |
Platform(s): | Microsoft Windows Server 2003 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2008 Microsoft Windows Server 2012 | Product(s): | Microsoft Exchange Server 2013 Microsoft Exchange Server 2010 Microsoft Exchange Server 2007 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:20653 | |||
Oval ID: | oval:org.mitre.oval:def:20653 | ||
Title: | OWA XSS Vulnerability (CVE-2013-5072) - MS13-105 | ||
Description: | Cross-site scripting (XSS) vulnerability in Outlook Web Access in Microsoft Exchange Server 2010 SP2 and SP3 and 2013 Cumulative Update 2 and 3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "OWA XSS Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2013-5072 | Version: | 3 |
Platform(s): | Microsoft Windows Server 2003 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2008 Microsoft Windows Server 2012 | Product(s): | Microsoft Exchange Server 2013 Microsoft Exchange Server 2010 Microsoft Exchange Server 2007 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:21058 | |||
Oval ID: | oval:org.mitre.oval:def:21058 | ||
Title: | Oracle Outside In Contains Multiple Exploitable Vulnerabilities (CVE-2013-5763) - MS13-105 | ||
Description: | Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Maintenance. NOTE: the original disclosure of this issue erroneously mapped it to CVE-2013-3624. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2013-5763 | Version: | 4 |
Platform(s): | Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2003 Microsoft Windows Server 2008 | Product(s): | Microsoft Exchange Server 2013 Microsoft Exchange Server 2010 Microsoft Exchange Server 2007 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 4 | |
Application | 1 | |
Application | 2 | |
Application | 1 | |
Application | 3 | |
Application | 2 | |
Application | 2 |
ExploitDB Exploits
id | Description |
---|---|
2014-01-27 | Oracle Outside In MDB - File Parsing Stack Based Buffer Overflow PoC |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2013-12-12 | IAVM : 2013-A-0231 - Multiple Vulnerabilities in Microsoft Exchange Server Severity : Category I - VMSKEY : V0042592 |
2013-10-17 | IAVM : 2013-A-0199 - Multiple Vulnerabilities in Oracle Fusion Middleware Severity : Category I - VMSKEY : V0040786 |
2013-09-12 | IAVM : 2013-A-0174 - Multiple Remote Code Execution Vulnerabilities in Microsoft SharePoint Server Severity : Category II - VMSKEY : V0040292 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29577 - Revision : 8 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29576 - Revision : 8 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29575 - Revision : 8 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29574 - Revision : 8 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29573 - Revision : 7 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29572 - Revision : 7 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29571 - Revision : 7 - Type : FILE-OTHER |
2014-03-06 | Oracle Outside In OS2 metafile parser stack buffer overflow attempt RuleID : 29570 - Revision : 7 - Type : FILE-OTHER |
2014-01-10 | Microsoft Office SharePoint malicious serialized viewstate evaluation attempt RuleID : 27823 - Revision : 3 - Type : SERVER-WEBAPP |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2014-04-14 | Name : The remote Windows host has web portal software installed that is affected by... File : websphere_portal_cve-2013-5791.nasl - Type : ACT_GATHER_INFO |
2013-12-11 | Name : The remote mail server has multiple vulnerabilities. File : smb_nt_ms13-105.nasl - Type : ACT_GATHER_INFO |
2013-09-11 | Name : The remote host is affected by multiple vulnerabilities. File : smb_nt_ms13-067.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2016-04-27 02:03:48 |
|
2014-05-06 11:35:13 |
|
2014-05-06 11:33:59 |
|
2014-04-19 00:26:13 |
|
2014-04-19 00:18:46 |
|
2014-04-18 21:28:43 |
|
2014-04-18 21:20:13 |
|
2014-04-18 17:26:29 |
|
2014-04-18 17:19:09 |
|
2014-04-18 13:30:00 |
|
2014-04-18 13:20:03 |
|
2014-04-18 09:27:14 |
|
2014-04-18 09:19:41 |
|
2014-04-18 05:28:07 |
|
2014-04-18 05:20:48 |
|
2014-04-18 00:26:26 |
|
2014-04-18 00:19:17 |
|
2014-04-17 21:26:05 |
|
2014-04-17 21:20:02 |
|
2014-04-17 17:26:42 |
|
2014-04-17 17:19:12 |
|
2014-04-17 13:29:38 |
|
2014-04-17 13:20:23 |
|
2014-04-17 09:07:59 |
|
2014-03-06 21:20:52 |
|
2014-02-17 11:47:54 |
|
2014-01-28 17:18:47 |
|
2013-12-13 21:19:31 |
|
2013-12-13 00:22:16 |
|
2013-12-11 13:22:11 |
|
2013-12-11 05:15:49 |
|
2013-12-10 21:16:13 |
|