9.3 - MS14-007

Executive Summary

Summary
Title	Vulnerability in Direct2D Could Allow Remote Code Execution (2912390)

Informations
Name	MS14-007	First vendor Publication	2014-02-11
Vendor	Microsoft	Last vendor Modification	2014-02-28
Severity (Vendor)	Critical	Revision	1.1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Revision Note: V1.1 (February 28, 2014): Bulletin revised to announce a detection change in the 2912390 update for Windows 8.1 for 32-bit Systems, Windows 8.1 for x64-based Systems, Windows RT 8.1, and Windows Server 2012 R2. This is a detection change only. There were no changes to the update files. Customers who have already successfully updated their systems do not need to take any action.

Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker would have no way to force users to view specially crafted content. Instead, an attacker would have to convince users to take action, typically by getting them to click a link in an email message or in an Instant Messenger message that takes users to an attacker's website, or by getting them to open an attachment sent through email.

Original Source

Url : http://technet.microsoft.com/en-us/security/bulletin/ms14-007

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:22456

Oval ID:	oval:org.mitre.oval:def:22456
Title:	Microsoft graphics component memory corruption vulnerability (CVE-2014-0263) - MS14-007
Description:	The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a large 2D geometric figure that is encountered with Internet Explorer, aka "Microsoft Graphics Component Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2014-0263	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):
Definition Synopsis:
Windows 7 / Server 2008 R2 and File Either OS Microsoft Windows 7 (32-bit) Service Pack 1 is installed AND Microsoft Windows 7 x64 Service Pack 1 is installed AND Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed AND Microsoft Windows Server 2008 R2 x64 Edition is installed AND Vulnerable File and Version gdr range Check if the version of D2d1.dll is greater than or equal to 6.1.7601.18000 AND Check if the version of D2d1.dll is less than 6.2.9200.16765 OR ldr range Check if the version of D2d1.dll is greater than or equal to 6.2.9200.20000 AND Check if the version of D2d1.dll is less than 6.2.9200.20883 OR Windows 8 / Server 2012 and File Either OS Microsoft Windows 8 (x86) is installed AND Microsoft Windows 8 (x64) is installed AND Microsoft Windows Server 2012 (64-bit) is installed AND Vulnerable file version Check if the version of D2d1.dll is less than 6.2.9200.16765 OR ldr range Check if the version of D2d1.dll is greater than or equal to 6.2.9200.20000 AND Check if the version of D2d1.dll is less than 6.2.9200.20882 OR Windows 8.1 / Server 2012 R2 and File Either os Microsoft Windows 8.1 (x86) is installed AND Microsoft Windows 8.1 (x64) is installed AND Microsoft Windows Server 2012 R2 is installed AND Check if the version of D2d1.dll is less than 6.3.9600.16473

CPE : Common Platform Enumeration

Type	Description	Count
Os	Microsoft Windows 7 cpe:2.3:o:microsoft:windows_7:-:sp1::::::	1
Os	Microsoft Windows 8 cpe:2.3:o:microsoft:windows_8:-:::::::*	1
Os	Microsoft Windows 8.1 cpe:2.3:o:microsoft:windows_8.1:-:::::::*	1
Os	Microsoft Windows Rt cpe:2.3:o:microsoft:windows_rt:-:::::::*	1
Os	Microsoft Windows Rt 8.1 cpe:2.3:o:microsoft:windows_rt_8.1:-:::::::*	1
Os	Microsoft Windows Server 2008 cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::x64:*	1
Os	Microsoft Windows Server 2012 cpe:2.3:o:microsoft:windows_server_2012:r2:::::::* cpe:2.3:o:microsoft:windows_server_2012:-:::::::*	2

Information Assurance Vulnerability Management (IAVM)

Date	Description
2014-02-13	IAVM : 2014-B-0014 - Microsoft Windows Graphics Component Remote Code Execution Vulnerability Severity : Category I - VMSKEY : V0044033

Snort® IPS/IDS

Date	Description
2014-03-13	Microsoft Internet Explorer overlapping object boundaries memory corruption a... RuleID : 29714 - Revision : 8 - Type : BROWSER-IE
2014-03-13	Microsoft Internet Explorer overlapping object boundaries memory corruption a... RuleID : 29713 - Revision : 8 - Type : BROWSER-IE

Nessus® Vulnerability Scanner

Date	Description
2014-02-12	Name : The remote Windows host is affected by a remote code execution vulnerability. File : smb_nt_ms14-007.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-03-13 21:21:01	Multiple Updates
2014-02-28 21:16:29	Multiple Updates
2014-02-17 11:47:55	Multiple Updates
2014-02-14 17:19:05	Multiple Updates
2014-02-12 21:25:24	Multiple Updates
2014-02-12 13:27:01	Multiple Updates
2014-02-11 21:17:06	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	1
CPE ID(s)	8
IAVM(s)	1
Snort® Rule(s)	2
Nessus® Exploit(s)	1

	Related
10	MS14-066
10	MS14-057
10	MS14-037
10	MS14-035
10	MS14-026
10	MS14-021
9.3	MS14-084
9.3	MS14-083
9.3	MS14-082
9.3	MS14-081
9.3	MS14-080
9.3	MS14-078
9.3	MS14-072
9.3	MS14-069
9.3	MS14-067
9.3	MS14-065
9.3	MS14-064
9.3	MS14-061
9.3	MS14-060
9.3	MS14-058
9.3	MS14-056
9.3	MS14-052
9.3	MS14-051
9.3	MS14-050
9.3	MS14-048
9.3	MS14-038
9.3	MS14-036
9.3	MS14-034
9.3	MS14-029
9.3	MS14-023
9.3	MS14-018
9.3	MS14-012
9.3	MS14-009
9.3	CVE-2014-0263
9	MS14-068
9	MS14-025
9	MS14-022
7.6	MS14-039
7.5	MS14-047
7.2	MS14-070
7.2	MS14-063
7.2	MS14-062
7.2	MS14-054
7.2	MS14-049
7.2	MS14-045
7.2	MS14-040
7.2	MS14-027
7.1	MS14-079
6.9	MS14-041
6.9	MS14-019
6.8	MS14-044
6.8	MS14-043
6.8	MS14-024
5.4	MS14-016
5.1	MS14-076
5.1	MS14-030
5	MS14-085
5	MS14-077
5	MS14-075
5	MS14-055
5	MS14-053
5	MS14-031
5	MS14-028
4.3	MS14-074
4.3	MS14-073
4.3	MS14-071
4.3	MS14-059
4.3	MS14-046
4.3	MS14-033
4.3	MS14-032
4	MS14-042
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 71 more Alert(s)

9.3 - MS14-007

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Information Assurance Vulnerability Management (IAVM)

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU