Executive Summary
| Summary | |
|---|---|
| Title | Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103) |
| Informations | |||
|---|---|---|---|
| Name | MS08-017 | First vendor Publication | 2008-03-11 |
| Vendor | Microsoft | Last vendor Modification | 2008-03-11 |
| Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| This critical update resolves two privately reported vulnerabilities in Microsoft Office Web Components. These vulnerabilities could allow remote code execution if a user viewed a specially crafted Web page. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:14227 | |||
| Oval ID: | oval:org.mitre.oval:def:14227 | ||
| Title: | Office Web Components URL Parsing Vulnerability | ||
| Description: | Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via a crafted URL, aka "Office Web Components URL Parsing Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2006-4695 | Version: | 7 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP | Product(s): | Microsoft Office 2000 Microsoft Office XP Microsoft Visual Studio .NET 2002 Microsoft Visual Studio .NET 2003 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:5327 | |||
| Oval ID: | oval:org.mitre.oval:def:5327 | ||
| Title: | Office Web Components DataSource Vulnerability | ||
| Description: | Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2007-1201 | Version: | 6 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Office 2000 Microsoft Office XP Microsoft Visual Studio .NET 2002 Microsoft Visual Studio .NET 2003 |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 | |
| Application | 1 | |
| Application | 1 | |
| Application | 2 | |
| Application | 1 | |
| Application | 2 |
SAINT Exploits
| Description | Link |
|---|---|
| Microsoft Office Web Components OWC.Spreadsheet.9 ActiveX Control overflow | More info here |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 42712 | Microsoft Office Web Components DataSource Page Handling Arbitrary Code Execu... |
| 42711 | Microsoft Office Web Components URL Parsing Arbitrary Code Execution |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2008-03-17 | IAVM : 2008-A-0015 - Microsoft Office Web Components Remote Code Execution Vulnerabilities Severity : Category II - VMSKEY : V0015760 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Office Data Source Control 9.0 ActiveX clsid unicode access RuleID : 7871 - Revision : 11 - Type : WEB-ACTIVEX |
| 2014-01-10 | Microsoft Office Data Source Control 9.0 ActiveX clsid access RuleID : 7870 - Revision : 16 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Microsoft Office Web Components OWC.Spreadsheet.9 ActiveX clsid access attempt RuleID : 4177 - Revision : 20 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Microsoft Office 2000 and 2002 Web Components Data Source Control ActiveX cls... RuleID : 4170 - Revision : 19 - Type : BROWSER-PLUGINS |
| 2015-01-06 | Microsoft Office Web Components OWC.Spreadsheet.9 ActiveX clsid access attempt RuleID : 32642 - Revision : 2 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Microsoft Office Web Components remote code execution attempt ActiveX clsid u... RuleID : 13581 - Revision : 6 - Type : WEB-ACTIVEX |
| 2014-01-10 | Microsoft Office Web Components remote code execution attempt ActiveX clsid a... RuleID : 13580 - Revision : 9 - Type : BROWSER-PLUGINS |
| 2014-01-10 | Office 2000 and 2002 Web Components Data Source Control ActiveX clsid unicode... RuleID : 13468 - Revision : 6 - Type : WEB-ACTIVEX |
| 2014-01-10 | Office 2000 and 2002 Web Components Spreadsheet ActiveX clsid unicode access RuleID : 13467 - Revision : 5 - Type : WEB-ACTIVEX |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2008-03-11 | Name : Arbitrary code can be executed on the remote host through Microsoft Office We... File : smb_nt_ms08-017.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2015-01-06 21:48:45 |
|
| 2014-02-17 11:45:55 |
|
| 2014-01-19 21:30:11 |
|
| 2013-11-11 12:41:07 |
|
| 2013-05-11 12:22:05 |
|
