Executive Summary
| Summary | |
|---|---|
| Title | Microsoft Updates for Multiple Vulnerabilities |
| Informations | |||
|---|---|---|---|
| Name | TA10-068A | First vendor Publication | 2010-03-09 |
| Vendor | US-CERT | Last vendor Modification | 2010-03-09 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Microsoft has released updates to address vulnerabilities in Microsoft Windows and Microsoft Office. I. Description Microsoft has released security bulletins for multiple vulnerabilities in Microsoft Movie Maker, Microsoft Office Producer II. Impact A remote, unauthenticated attacker could execute arbitrary code or cause a vulnerable application to crash. III. Solution Apply updates from Microsoft Microsoft has provided updates for these vulnerabilities in the Microsoft Security Bulletin Summary for March 2010. The security bulletin describes any known issues related to the updates. Microsoft notes that there is no security update available for Microsoft Producer 2003 at this time of this writing. Users can mitigate the impact to systems with Microsoft Producer 2003 by applying the automated solution to remove the Microsoft Producer file associations using the Fix it found in Microsoft Knowledge Base Article 975561, and by applying the workarounds in Microsoft Security Bulletin MS10-016. |
Original Source
| Url : http://www.us-cert.gov/cas/techalerts/TA10-068A.html |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 59 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 12 % | CWE-399 | Resource Management Errors |
| 12 % | CWE-200 | Information Exposure |
| 12 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 6 % | CWE-362 | Race Condition |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:7722 | |||
| Oval ID: | oval:org.mitre.oval:def:7722 | ||
| Title: | HTML Object Memory Corruption Vulnerability (CVE-2010-0492) | ||
| Description: | Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0492 | Version: | 10 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7 | Product(s): | Microsoft Internet Explorer 8 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:7774 | |||
| Oval ID: | oval:org.mitre.oval:def:7774 | ||
| Title: | Race Condition Memory Corruption Vulnerability | ||
| Description: | Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption, aka "Race Condition Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0489 | Version: | 6 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:7840 | |||
| Oval ID: | oval:org.mitre.oval:def:7840 | ||
| Title: | Post Encoding Information Disclosure Vulnerability | ||
| Description: | Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified "encoding strings," which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site, aka "Post Encoding Information Disclosure Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0488 | Version: | 6 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:7862 | |||
| Oval ID: | oval:org.mitre.oval:def:7862 | ||
| Title: | Microsoft Office Excel MDXTUPLE Record Heap Overflow Vulnerability | ||
| Description: | Heap-based buffer overflow in Microsoft Office Excel 2007 SP1 and SP2; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted spreadsheet in which "a MDXTUPLE record is broken up into several records," aka "Microsoft Office Excel MDXTUPLE Record Heap Overflow Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0260 | Version: | 9 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2007 Microsoft Office Excel Viewer Microsoft Office Compatibility Pack |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:7888 | |||
| Oval ID: | oval:org.mitre.oval:def:7888 | ||
| Title: | Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability | ||
| Description: | Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0264 | Version: | 4 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2002 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:8080 | |||
| Oval ID: | oval:org.mitre.oval:def:8080 | ||
| Title: | Memory Corruption Vulnerability (CVE-2010-0805) | ||
| Description: | The Tabular Data Control (TDC) ActiveX control in Microsoft Internet Explorer 5.01 SP4, 6 on Windows XP SP2 and SP3, and 6 SP1 allows remote attackers to execute arbitrary code via a long URL (DataURL parameter) that triggers memory corruption in the CTDCCtl::SecurityCHeckDataURL function, aka "Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0805 | Version: | 2 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP | Product(s): | Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8302 | |||
| Oval ID: | oval:org.mitre.oval:def:8302 | ||
| Title: | Uninitialized Memory Corruption Vulnerability (CVE-2010-0490) | ||
| Description: | Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0490 | Version: | 12 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7 | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8407 | |||
| Oval ID: | oval:org.mitre.oval:def:8407 | ||
| Title: | Microsoft Office Excel XLSX File Parsing Code Execution Vulnerability | ||
| Description: | Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers during decompression of Open XML (.XLSX) documents, which allows remote attackers to execute arbitrary code via a crafted document that triggers access to uninitialized memory locations, aka "Microsoft Office Excel XLSX File Parsing Code Execution Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0263 MS10-017 | Version: | 14 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2007 Microsoft Office Excel Viewer Microsoft Office Compatibility Pack Microsoft Office SharePoint Server 2007 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8421 | |||
| Oval ID: | oval:org.mitre.oval:def:8421 | ||
| Title: | HTML Object Memory Corruption Vulnerability (CVE-2010-0491) | ||
| Description: | Use-after-free vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 6 SP1 allows remote attackers to execute arbitrary code by changing unspecified properties of an HTML object that has an onreadystatechange event handler, aka "HTML Object Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0491 | Version: | 2 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8446 | |||
| Oval ID: | oval:org.mitre.oval:def:8446 | ||
| Title: | Uninitialized Memory Corruption Vulnerability (CVE-2010-0806) | ||
| Description: | Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, aka "Uninitialized Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0806 | Version: | 6 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8479 | |||
| Oval ID: | oval:org.mitre.oval:def:8479 | ||
| Title: | Microsoft Office Excel MDXSET Record Heap Overflow Vulnerability | ||
| Description: | Heap-based buffer overflow in Microsoft Office Excel 2007 SP1 and SP2 and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted spreadsheet in which "a MDXSET record is broken up into several records," aka "Microsoft Office Excel MDXSET Record Heap Overflow Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0261 | Version: | 7 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2007 Microsoft Office Compatibility Pack |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8532 | |||
| Oval ID: | oval:org.mitre.oval:def:8532 | ||
| Title: | HTML Rendering Memory Corruption Vulnerability (CVE-2010-0807) | ||
| Description: | Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0807 | Version: | 6 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | Microsoft Internet Explorer 7 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8545 | |||
| Oval ID: | oval:org.mitre.oval:def:8545 | ||
| Title: | Microsoft Office Excel Sheet Object Type Confusion Vulnerability | ||
| Description: | Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet that causes memory to be interpreted as a different object type than intended, aka "Microsoft Office Excel Sheet Object Type Confusion Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0258 | Version: | 9 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel 2007 Microsoft Office Excel Viewer Microsoft Office Compatibility Pack |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8553 | |||
| Oval ID: | oval:org.mitre.oval:def:8553 | ||
| Title: | HTML Element Cross-Domain Vulnerability | ||
| Description: | Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted HTML document in a situation where the client user drags one browser window across another browser window, aka "HTML Element Cross-Domain Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0494 | Version: | 12 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7 | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8554 | |||
| Oval ID: | oval:org.mitre.oval:def:8554 | ||
| Title: | Uninitialized Memory Corruption Vulnerability (CVE-2010-0267) | ||
| Description: | Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0267 | Version: | 6 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8562 | |||
| Oval ID: | oval:org.mitre.oval:def:8562 | ||
| Title: | Microsoft Office Excel FNGROUPNAME Record Uninitialized Memory Vulnerability | ||
| Description: | Microsoft Office Excel 2007 SP1 and SP2 and Office 2004 for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet that triggers access of an uninitialized stack variable, aka "Microsoft Office Excel FNGROUPNAME Record Uninitialized Memory Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0262 | Version: | 4 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2007 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:8595 | |||
| Oval ID: | oval:org.mitre.oval:def:8595 | ||
| Title: | Movie Maker and Producer Buffer Overflow Vulnerability | ||
| Description: | Buffer overflow in Microsoft Windows Movie Maker 2.1, 2.6, and 6.0, and Microsoft Producer 2003, allows remote attackers to execute arbitrary code via a crafted project (.MSWMM) file, aka "Movie Maker and Producer Buffer Overflow Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0265 | Version: | 10 |
| Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Movie Maker 2.1 Movie Maker 2.6 Movie Maker 6.0 Microsoft Producer 2003 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:8617 | |||
| Oval ID: | oval:org.mitre.oval:def:8617 | ||
| Title: | Microsoft Office Excel Record Memory Corruption Vulnerability | ||
| Description: | Microsoft Office Excel 2002 SP3 does not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Microsoft Office Excel Record Memory Corruption Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-0257 | Version: | 4 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2002 |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
SAINT Exploits
| Description | Link |
|---|---|
| Internet Explorer iepeers.dll use-after-free vulnerability | More info here |
| Microsoft Excel DbOrParamQry memory corruption | More info here |
| Microsoft Windows Movie Maker IsValidWMToolsStream buffer overflow | More info here |
| Internet Explorer Tabular Data Control DataURL memory corruption | More info here |
ExploitDB Exploits
| id | Description |
|---|---|
| 2010-12-14 | Internet Explorer DHTML Behaviors Use After Free |
| 2010-09-04 | MOAUB #4 - Movie Maker Remote Code Execution (MS10-016) |
| 2010-04-03 | Microsoft Internet Explorer Tabular Data Control ActiveX Remote Code Execution |
| 2010-03-10 | Microsoft Internet Explorer iepeers.dll Use-After-Free Exploit (meta) |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2010-04-01 | Name : Microsoft Internet Explorer Multiple Vulnerabilities (980182) File : nvt/secpod_ms10-018.nasl |
| 2010-03-10 | Name : MS Internet Explorer Remote Code Execution Vulnerability (981374) File : nvt/gb_ms_ie_remote_code_exe_vuln_981374.nasl |
| 2010-03-10 | Name : Microsoft Windows Movie Maker Could Allow Remote Code Execution Vulnerability... File : nvt/secpod_ms10-016.nasl |
| 2010-03-10 | Name : Microsoft Office Excel Multiple Vulnerabilities (980150) File : nvt/secpod_ms10-017.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 63335 | Microsoft IE Unspecified Uninitialized Memory Corruption |
| 63334 | Microsoft IE Post Encoding Information Disclosure |
| 63333 | Microsoft IE Unspecified Race Condition Memory Corruption |
| 63332 | Microsoft IE Object Handling Unspecified Memory Corruption (2010-0490) |
| 63331 | Microsoft IE HTML Object onreadystatechange Event Handler Memory Corruption A memory corruption flaw exists in Microsoft Internet Explorer versions 5.01, 6, 6 SP1, 8. The service fails to sanitize user-supplied input handling certain HTML objects resulting in memory corruption. With a specially crafted web page, a remote attacker can execute arbitrary code. |
| 63330 | Microsoft IE HTML Rendering Unspecified Memory Corruption |
| 63329 | Microsoft IE Tabular Data Control (TDC) ActiveX URL Handling CTDCCtl::Securit... |
| 63328 | Microsoft IE HTML Element Handling Cross-Domain Information Disclosure |
| 63327 | Microsoft IE CTimeAction Object TIME2 Handling Memory Corruption |
| 62823 | Microsoft Office Excel XLS File DbOrParamQry Record Parsing Overflow A memory corruption occurs on Microsoft Office Excel 2002 when parsing a .XLS file with a malformed DbOrParamQry record. This vulnerability could be used by a remote attacker to execute arbitrary code in the context of the currently logged on user, by enticing the user to open a specially crafted file. |
| 62822 | Microsoft Office Excel XLSX File ZIP Header Processing Memory Corruption |
| 62821 | Microsoft Office Excel FNGROUPNAME Record Handling Memory Corruption |
| 62820 | Microsoft Office Excel Workbook Globals Stream MDXSET Record Handling Overflow |
| 62819 | Microsoft Office Excel MDXTUPLE Record Handling Overflow |
| 62818 | Microsoft Office Excel Sheet Object Type Confusion Arbitrary Code Execution |
| 62817 | Microsoft Office Excel File Record Handling Unspecified Memory Corruption |
| 62811 | Microsoft Windows Movie Maker / Producer IsValidWMToolsStream() Function Proj... A vulnerability was found in Windows Movie Maker and Microsoft Producer, which can be triggered by a remote attacker by sending a specially crafted file and enticing the user to open it. This vulnerability results in a write access violation and can lead to remote code execution. |
| 62810 | Microsoft IE iepeers.dll Use-After-Free Arbitrary Code Execution Microsoft Windows Internet Explorer contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an attacker utilizes a remote memory-corruption vulnerability in Internet Explorer by inserting malicious code into a site and when Internet Explorer attempts to parse the attack page, the remote attacker to gain privileges of the currently logged-in user viewing the malicious site. |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2018-02-27 | Microsoft Windows Movie Maker project file heap buffer overflow attempt RuleID : 45554 - Revision : 1 - Type : FILE-MULTIMEDIA |
| 2018-02-27 | Microsoft Windows Movie Maker project file heap buffer overflow attempt RuleID : 45553 - Revision : 1 - Type : FILE-MULTIMEDIA |
| 2017-10-10 | Microsoft Office Excel sheet object type confusion exploit attempt RuleID : 44296 - Revision : 2 - Type : FILE-OFFICE |
| 2017-10-10 | Microsoft Office Excel BIFF8 formulas from records parsing code execution att... RuleID : 44292 - Revision : 1 - Type : FILE-OFFICE |
| 2017-10-10 | Microsoft Office Excel BIFF5 formulas from records parsing code execution att... RuleID : 44291 - Revision : 1 - Type : FILE-OFFICE |
| 2017-10-10 | Microsoft Office Excel sheet object type confusion exploit attempt RuleID : 44290 - Revision : 3 - Type : FILE-OFFICE |
| 2017-10-10 | Microsoft Office Excel sheet object type confusion exploit attempt RuleID : 44289 - Revision : 2 - Type : FILE-OFFICE |
| 2016-10-01 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 39992 - Revision : 1 - Type : FILE-OFFICE |
| 2016-10-01 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 39991 - Revision : 1 - Type : FILE-OFFICE |
| 2016-10-01 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 39990 - Revision : 1 - Type : FILE-OFFICE |
| 2016-10-01 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 39989 - Revision : 1 - Type : FILE-OFFICE |
| 2016-10-01 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 39988 - Revision : 1 - Type : FILE-OFFICE |
| 2016-03-15 | Microsoft Windows Movie Maker project file heap buffer overflow attempt RuleID : 37663 - Revision : 1 - Type : FILE-MULTIMEDIA |
| 2014-11-16 | Microsoft Internet Explorer outerHTML against incomplete element heap corrupt... RuleID : 31504 - Revision : 3 - Type : BROWSER-IE |
| 2014-04-24 | Microsoft Office Excel DbOrParamQry.fodbcConn parsing remote code execution a... RuleID : 30248 - Revision : 3 - Type : FILE-OFFICE |
| 2014-04-24 | Microsoft Office Excel DbOrParamQry.fodbcConn parsing remote code execution a... RuleID : 30247 - Revision : 3 - Type : FILE-OFFICE |
| 2014-04-24 | Microsoft Office Excel DbOrParamQry.fWeb parsing remote code execution attempt RuleID : 30246 - Revision : 3 - Type : FILE-OFFICE |
| 2014-04-24 | Microsoft Office Excel DbOrParamQry.fWeb parsing remote code execution attempt RuleID : 30245 - Revision : 3 - Type : FILE-OFFICE |
| 2014-04-24 | Microsoft Office Excel DbOrParamQry.fOdbcConn parsing remote code execution a... RuleID : 30244 - Revision : 3 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Internet Explorer innerHTML against incomplete element heap corrupt... RuleID : 27222 - Revision : 4 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer userdata behavior memory corruption attempt RuleID : 25986 - Revision : 7 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer userdata behavior memory corruption attempt RuleID : 25985 - Revision : 9 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer userdata behavior memory corruption attempt RuleID : 25984 - Revision : 9 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Office Excel FNGROUPNAME record memory corruption attempt RuleID : 23010 - Revision : 6 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel sheet object type confusion exploit attempt RuleID : 21943 - Revision : 6 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel sheet object type confusion exploit attempt RuleID : 21942 - Revision : 5 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel DbOrParamQry.fodbcConn parsing remote code execution a... RuleID : 21930 - Revision : 5 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel DbOrParamQry.fodbcConn parsing remote code execution a... RuleID : 21929 - Revision : 5 - Type : FILE-OFFICE |
| 2014-01-10 | Crimepack exploit kit malicious pdf request RuleID : 21099 - Revision : 5 - Type : EXPLOIT-KIT |
| 2014-01-10 | Crimepack exploit kit landing page RuleID : 21098 - Revision : 5 - Type : EXPLOIT-KIT |
| 2014-01-10 | Crimepack exploit kit post-exploit download request RuleID : 21097 - Revision : 4 - Type : EXPLOIT-KIT |
| 2014-01-10 | Crimepack exploit kit control panel access RuleID : 21096 - Revision : 6 - Type : EXPLOIT-KIT |
| 2014-01-10 | Eleanore exploit kit post-exploit page request RuleID : 21071 - Revision : 5 - Type : EXPLOIT-KIT |
| 2014-01-10 | Eleanore exploit kit pdf exploit page request RuleID : 21070 - Revision : 4 - Type : EXPLOIT-KIT |
| 2014-01-10 | Eleanore exploit kit exploit fetch request RuleID : 21069 - Revision : 4 - Type : EXPLOIT-KIT |
| 2014-01-10 | Eleanore exploit kit landing page RuleID : 21068 - Revision : 4 - Type : EXPLOIT-KIT |
| 2014-01-10 | Yang Pack yg.htm landing page RuleID : 21006 - Revision : 5 - Type : MALWARE-CNC |
| 2014-01-10 | Cute Pack cute-ie.html landing page RuleID : 21004 - Revision : 5 - Type : MALWARE-CNC |
| 2014-01-10 | Cute Pack cute-ie.html request RuleID : 21003 - Revision : 5 - Type : MALWARE-CNC |
| 2014-01-10 | Microsoft Office Excel FNGROUPNAME record memory corruption attempt RuleID : 20029 - Revision : 14 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Windows Movie Maker project file heap buffer overflow attempt RuleID : 19956 - Revision : 15 - Type : FILE-MULTIMEDIA |
| 2014-01-10 | Microsoft Windows Tabular Control ActiveX overflow by CLSID / param tag RuleID : 19893 - Revision : 10 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Microsoft Internet Explorer outerHTML against incomplete element heap corrupt... RuleID : 19147 - Revision : 12 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Office Excel EntExU2 write access violation attempt RuleID : 19133 - Revision : 15 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel sheet object type confusion exploit attempt RuleID : 18740 - Revision : 17 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 18541 - Revision : 15 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Internet Explorer invalid pointer memory corruption attempt RuleID : 18540 - Revision : 6 - Type : SPECIFIC-THREATS |
| 2014-01-10 | Microsoft Internet Explorer event handling remote code execution attempt RuleID : 18539 - Revision : 12 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer userdata behavior memory corruption attempt RuleID : 17689 - Revision : 12 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer userdata behavior memory corruption attempt RuleID : 17688 - Revision : 13 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer invalid pointer memory corruption attempt RuleID : 17687 - Revision : 12 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer invalid pointer memory corruption attempt RuleID : 17686 - Revision : 12 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer invalid pointer memory corruption attempt RuleID : 17685 - Revision : 12 - Type : BROWSER-IE |
| 2015-05-28 | Microsoft Tabular Control ActiveX overflow by CLSID / param tag RuleID : 16559 - Revision : 5 - Type : WEB-ACTIVEX |
| 2014-01-10 | Microsoft Internet Explorer malformed span/div html document heap corruption ... RuleID : 16512 - Revision : 16 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer Tabular Control ActiveX overflow by ProgID RuleID : 16511 - Revision : 14 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Microsoft Internet Explorer Tabular Control ActiveX overflow by CLSID RuleID : 16510 - Revision : 15 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Microsoft Internet Explorer designMode-enabled information disclosure attempt RuleID : 16509 - Revision : 8 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 8 non-IE8 compatibility mode htmltime remote code... RuleID : 16508 - Revision : 15 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer onreadystatechange memory corruption attempt RuleID : 16507 - Revision : 16 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer innerHTML against incomplete element heap corrupt... RuleID : 16506 - Revision : 20 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer HTML parsing memory corruption attempt RuleID : 16505 - Revision : 8 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer 7 encoded content handling exploit attempt RuleID : 16504 - Revision : 8 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer event handling remote code execution attempt RuleID : 16503 - Revision : 15 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Internet Explorer userdata behavior memory corruption attempt RuleID : 16482 - Revision : 15 - Type : BROWSER-IE |
| 2014-01-10 | Microsoft Office Excel DbOrParamQry.fWeb parsing remote code execution attempt RuleID : 16471 - Revision : 16 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel DbOrParamQry.fWeb parsing remote code execution attempt RuleID : 16470 - Revision : 16 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel DbOrParamQry.fOdbcConn parsing remote code execution a... RuleID : 16469 - Revision : 17 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 16468 - Revision : 16 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel 2007 invalid comments.xml uninitialized pointer access... RuleID : 16467 - Revision : 16 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel uninitialized stack variable code execution attempt RuleID : 16466 - Revision : 15 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel ContinueFRT12 and MDXSet heap overflow attempt RuleID : 16465 - Revision : 17 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel ContinueFRT12 heap overflow attempt RuleID : 16464 - Revision : 17 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel BIFF5 formulas from records parsing code execution att... RuleID : 16463 - Revision : 15 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel BIFF8 formulas from records parsing code execution att... RuleID : 16462 - Revision : 15 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Excel EntExU2 write access violation attempt RuleID : 16461 - Revision : 22 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-10-20 | Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms10-017.nasl - Type : ACT_GATHER_INFO |
| 2010-03-30 | Name : Arbitrary code can be executed on the remote host through a web browser. File : smb_nt_ms10-018.nasl - Type : ACT_GATHER_INFO |
| 2010-03-09 | Name : Arbitrary code can be executed on the remote host through Windows Movie Maker. File : smb_nt_ms10-016.nasl - Type : ACT_GATHER_INFO |
| 2010-03-09 | Name : Arbitrary code can be executed on the remote host through Microsoft Office Ex... File : smb_nt_ms10-017.nasl - Type : ACT_GATHER_INFO |
