Executive Summary

Informations
Name CVE-2012-1858 First vendor Publication 2012-06-12
Vendor Cve Last vendor Modification 2023-12-07

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N)
Cvss Base Score 4.3 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The toStaticHTML API (aka the SafeHTML component) in Microsoft Internet Explorer 8 and 9, Communicator 2007 R2, and Lync 2010 and 2010 Attendee does not properly handle event attributes and script, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted HTML document, aka "HTML Sanitization Vulnerability."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1858

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-200 Information Exposure

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:15530
 
Oval ID: oval:org.mitre.oval:def:15530
Title: HTML Sanitization Vulnerability - MS12-050
Description: The toStaticHTML API (aka the SafeHTML component) in Microsoft Internet Explorer 8 and 9, Communicator 2007 R2, and Lync 2010 and 2010 Attendee does not properly handle event attributes and script, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted HTML document, aka "HTML Sanitization Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2012-1858
Version: 13
Platform(s): Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s): Microsoft Communicator 2007 R2
Microsoft Internet Explorer 8
Microsoft Internet Explorer 9
Microsoft Lync 2010
Microsoft Lync 2010 Attendee
Microsoft Groove Server 2010
Microsoft InfoPath 2007
Microsoft InfoPath 2010
Microsoft SharePoint Foundation 2010
Microsoft SharePoint Server 2007
Microsoft SharePoint Server 2010
Microsoft SharePoint Services 3.0
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 3
Application 1

ExploitDB Exploits

id Description
2012-08-02 Microsoft Internet Explorer Fixed Table Col Span Heap Overflow
2012-07-12 IE9, SharePoint, Lync toStaticHTML HTML Sanitizing Bypass
2012-06-14 MS12-037 Internet Explorer Same ID Property Deleted Object Handling Memory Co...

OpenVAS Exploits

Date Description
2012-07-11 Name : Microsoft SharePoint Multiple Privilege Elevation Vulnerabilities (2695502)
File : nvt/secpod_ms12-050.nasl
2012-06-13 Name : Microsoft Internet Explorer Multiple Vulnerabilities (2699988)
File : nvt/secpod_ms12-037.nasl
2012-06-13 Name : Microsoft Lync Remote Code Execution Vulnerabilities (2707956)
File : nvt/secpod_ms12-039.nasl

Snort® IPS/IDS

Date Description
2020-04-16 Microsoft Internet Explorer center element dynamic manipulation attempt
RuleID : 53463 - Revision : 1 - Type : BROWSER-IE
2020-04-16 Microsoft Internet Explorer center element dynamic manipulation attempt
RuleID : 53462 - Revision : 1 - Type : BROWSER-IE
2020-04-16 Microsoft Internet Explorer center element dynamic manipulation attempt
RuleID : 53460 - Revision : 1 - Type : BROWSER-IE
2020-04-16 Microsoft Internet Explorer center element dynamic manipulation attempt
RuleID : 53459 - Revision : 1 - Type : BROWSER-IE
2016-08-31 Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39751 - Revision : 1 - Type : BROWSER-IE
2016-08-31 Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39750 - Revision : 1 - Type : BROWSER-IE
2016-08-31 Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39749 - Revision : 1 - Type : BROWSER-IE
2016-08-31 Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39748 - Revision : 1 - Type : BROWSER-IE
2016-04-05 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 38016 - Revision : 2 - Type : BROWSER-IE
2016-04-05 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 38015 - Revision : 2 - Type : BROWSER-IE
2016-04-05 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 38014 - Revision : 1 - Type : BROWSER-IE
2016-04-05 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 38013 - Revision : 1 - Type : BROWSER-IE
2014-11-16 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 31471 - Revision : 2 - Type : BROWSER-IE
2014-11-16 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 31470 - Revision : 2 - Type : BROWSER-IE
2014-11-16 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 31469 - Revision : 2 - Type : BROWSER-IE
2014-11-16 Microsoft Internet Explorer html table column span width increase memory corr...
RuleID : 31428 - Revision : 4 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28360 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28359 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28358 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28357 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28356 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28355 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 28354 - Revision : 7 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer 9 memory disclosure attempt
RuleID : 27663 - Revision : 3 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer html table column span width increase memory corr...
RuleID : 25246 - Revision : 8 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer html table column span width increase memory corr...
RuleID : 24205 - Revision : 6 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer html table column span width increase memory corr...
RuleID : 24204 - Revision : 6 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer html table column span width increase memory corr...
RuleID : 24203 - Revision : 5 - Type : BROWSER-IE
2014-01-10 Microsoft Office SharePoint name field cross site scripting attempt
RuleID : 24198 - Revision : 6 - Type : SERVER-WEBAPP
2014-01-10 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 23609 - Revision : 9 - Type : BROWSER-IE
2014-01-10 Microsoft Office SharePoint query.iqy XSS attempt
RuleID : 23282 - Revision : 7 - Type : SERVER-WEBAPP
2014-01-10 Microsoft Office SharePoint scriptresx.ashx XSS attempt
RuleID : 23281 - Revision : 6 - Type : SERVER-WEBAPP
2014-01-10 Microsoft Office SharePoint name field cross site scripting attempt
RuleID : 23279 - Revision : 10 - Type : SERVER-WEBAPP
2014-01-10 Microsoft Lync Online wlanapi.dll dll-load exploit attempt
RuleID : 23165 - Revision : 8 - Type : SERVER-OTHER
2014-01-10 Microsoft Lync Online ncrypt.dll dll-load exploit attempt
RuleID : 23164 - Revision : 8 - Type : SERVER-OTHER
2014-01-10 Microsoft Lync Online request for wlanapi.dll over SMB attempt
RuleID : 23163 - Revision : 6 - Type : OS-WINDOWS
2014-01-10 Microsoft Lync Online request for ncrypt.dll over SMB attempt
RuleID : 23162 - Revision : 6 - Type : OS-WINDOWS
2014-01-10 Microsoft multiple product toStaticHTML XSS attempt
RuleID : 23137 - Revision : 11 - Type : BROWSER-IE
2014-01-10 Microsoft multiple product toStaticHTML XSS attempt
RuleID : 23136 - Revision : 11 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer 9 memory disclosure attempt
RuleID : 23128 - Revision : 6 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer insertAdjacentText memory corruption attempt
RuleID : 23126 - Revision : 5 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 23125 - Revision : 11 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer html table column span width increase memory corr...
RuleID : 23124 - Revision : 9 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 23123 - Revision : 8 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer use after free attempt
RuleID : 23122 - Revision : 6 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer center element dynamic manipulation attempt
RuleID : 23121 - Revision : 10 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer console object use after free attempt
RuleID : 23118 - Revision : 9 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer 9 DOM element use after free attempt
RuleID : 23117 - Revision : 9 - Type : BROWSER-IE
2014-01-10 Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 23116 - Revision : 7 - Type : BROWSER-IE

Nessus® Vulnerability Scanner

Date Description
2012-07-11 Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms12-050.nasl - Type : ACT_GATHER_INFO
2012-06-13 Name : The remote host is affected by code execution vulnerabilities.
File : smb_nt_ms12-037.nasl - Type : ACT_GATHER_INFO
2012-06-13 Name : Arbitrary code can be executed on the remote host through Microsoft Lync.
File : smb_nt_ms12-039.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
CERT http://www.us-cert.gov/cas/techalerts/TA12-164A.html
http://www.us-cert.gov/cas/techalerts/TA12-192A.html
MS https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12...
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12...
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12...
OVAL https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
Date Informations
2023-12-07 21:28:01
  • Multiple Updates
2021-07-27 00:24:31
  • Multiple Updates
2021-05-04 12:19:39
  • Multiple Updates
2021-04-22 01:23:21
  • Multiple Updates
2020-09-28 17:22:44
  • Multiple Updates
2020-05-23 00:33:23
  • Multiple Updates
2019-05-09 12:04:33
  • Multiple Updates
2019-02-26 17:19:37
  • Multiple Updates
2018-10-31 00:20:17
  • Multiple Updates
2018-10-13 05:18:35
  • Multiple Updates
2018-09-20 12:09:37
  • Multiple Updates
2017-09-19 09:25:15
  • Multiple Updates
2016-09-30 01:03:37
  • Multiple Updates
2016-08-05 12:03:43
  • Multiple Updates
2016-06-28 21:56:42
  • Multiple Updates
2016-04-26 21:43:42
  • Multiple Updates
2014-02-17 11:09:23
  • Multiple Updates
2014-01-19 21:28:38
  • Multiple Updates
2013-05-10 22:37:16
  • Multiple Updates
2013-03-07 13:19:44
  • Multiple Updates