10 - TA08-043C

Executive Summary

Summary
Title	Microsoft Updates for Multiple Vulnerabilities

Informations
Name	TA08-043C	First vendor Publication	2008-02-12
Vendor	US-CERT	Last vendor Modification	2008-02-12
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Internet Explorer, Office, Visual Basic and Internet Information Services (IIS). Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code, gain elevated privileges, or crash a vulnerable system.

I. Description

Microsoft has released updates to address vulnerabilities that affect Microsoft Windows, Internet Explorer, Office, Visual Basic and Internet Information Services (IIS) as part of the Microsoft Security Bulletin Summary for February 2008. The most severe vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code. For more information, see the US-CERT Vulnerability Notes Database.

II. Impact

A remote, unauthenticated attacker could execute arbitrary code, gain elevated privileges, or cause a denial of service.

III. Solution

Apply updates from Microsoft

Microsoft has provided updates for these vulnerabilities in the February 2008 security bulletins. The security bulletins describe any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects.
Administrators should consider using an automated update distribution system such as Windows Server Update Services (WSUS).

Original Source

Url : http://www.us-cert.gov/cas/techalerts/TA08-043C.html

CWE : Common Weakness Enumeration

%	Id	Name
31 %	CWE-94	Failure to Control Generation of Code ('Code Injection')
19 %	CWE-399	Resource Management Errors
19 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
19 %	CWE-20	Improper Input Validation
6 %	CWE-416	Use After Free
6 %	CWE-264	Permissions, Privileges, and Access Controls

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:4547

Oval ID:	oval:org.mitre.oval:def:4547
Title:	Word Memory Corruption Vulnerability
Description:	Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote attackers to execute arbitrary code via a crafted .pub file, aka "Publisher Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0104	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Publisher 2000 Microsoft Publisher 2002 Microsoft Publisher 2003
Definition Synopsis:
IF Microsoft Publisher 2000 is installed AND the version of Mspub.exe is less than 9.0.8931.0 OR Microsoft Publisher 2002 is installed AND the version of Mspub.exe is less than 10.0.6840.0 OR Microsoft Publisher 2003 is installed AND the version of Mspub.exe is less than 11.0.8200.0

Definition Id: oval:org.mitre.oval:def:4904

Oval ID:	oval:org.mitre.oval:def:4904
Title:	Argument Handling Memory Corruption Vulnerability
Description:	Unspecified vulnerability in an ActiveX control (dxtmsft.dll) in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via a crafted image, aka "Argument Handling Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0078	Version:	11
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
IE 5.01,SP4 on Win2k Microsoft Windows 2000 is installed AND Microsoft Internet Explorer 5.01 SP4 is installed AND the version of mshtml.dll is less than 5.0.3860.1000 OR IE 6 on Win 2k Microsoft Windows 2000 is installed AND Internet Explorer 6 Service Pack 1 is installed AND the version of mshtml.dll is less than 6.0.2800.1607 OR IE 6 on Win XP Microsoft Windows XP (32-bit) is installed AND Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.2900.3268 OR IE 6 on Win 2003 or Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.3064 AND Win XP X64/ Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 6 on Win 2003 / Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.4210 AND Win XP X64 / Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 7 on Win 2003 platforms Microsoft Internet Explorer 7 is installed AND Win XP / Win 2K3 and IE 7 Microsoft Windows XP is installed AND Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16608 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20733 AND Mshtml.dll version is greater than 7.0.6000.20000 OR IE 7 on Win Vista platforms Microsoft Internet Explorer 7 is installed AND Windows Vista 32/ 64 bit Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16609 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20734 AND Mshtml.dll version is greater than 7.0.6000.20000

Definition Id: oval:org.mitre.oval:def:5009

Oval ID:	oval:org.mitre.oval:def:5009
Title:	Microsoft Works File Converter Index Table Vulnerability
Description:	Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section header index table information, aka "Microsoft Works File Converter Index Table Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0105	Version:	2
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Office 2003
Definition Synopsis:
Microsoft Office 2003 is installed AND the version of works632.cnv is less than 7.3.1005.0

Definition Id: oval:org.mitre.oval:def:5073

Oval ID:	oval:org.mitre.oval:def:5073
Title:	Word Memory Corruption Vulnerability
Description:	Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruption.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0109	Version:	8
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Word 2000 Microsoft Word 2002 Microsoft Word 2003 Microsoft Word Viewer 2003
Definition Synopsis:
Vulnerable Word 2000 Microsoft Word 2000 is installed AND the version of Winword.exe is less than 9.0.0.8966 OR Vulnerable Word 2002 Microsoft Word 2002 is installed AND the version of Winword.exe is less than 10.0.6838.0 OR Vulnerable Word 2003 Microsoft Word 2003 is installed AND the version of Winword.exe is less than 11.0.8202.0 OR Vulnerable Word Viewer Microsoft Word Viewer is installed AND Check if version of Wordview.exe is less than 11.0.8202.0

Definition Id: oval:org.mitre.oval:def:5181

Oval ID:	oval:org.mitre.oval:def:5181
Title:	Windows Active Directory Denial of Service Vulnerability
Description:	Unspecified vulnerability in Active Directory on Microsoft Windows 2000 and Windows Server 2003, and Active Directory Application Mode (ADAM) on XP and Server 2003, allows remote attackers to cause a denial of service (hang and restart) via a crafted LDAP request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0088	Version:	10
Platform(s):	Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Vulnerable Windows 2000 SP4 Microsoft Windows 2000 SP4 or later is installed AND NTDS Service is installed AND ntdsa.dll version is less than 5.0.2195.7147 OR Vulnerable Windows XP SP2 (x86)/(x64) Windows XP SP2 (x86)/(x64) Microsoft Windows XP SP2 or later is installed AND Microsoft Windows XP x64 Edition SP2 is installed AND Check if ADAM service is installed AND adamdsa.dll version is less than 1.1.3790.4188 OR Vulnerable Windows XP x64 SP1 Microsoft Windows XP Professional x64 Edition SP1 is installed AND Check if ADAM service is installed AND adamdsa.dll version is less than 1.1.3790.3043 OR Vulnerable Windows Server 2003 SP1 (x86)/(x64) Windows Server 2003 SP1 (x86)/(x64) Microsoft Windows Server 2003 SP1 (x86) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Vulnerable Active directory or ADAM IF NTDS Service is installed AND ntdsa.dll version is less than 5.2.3790.3043 OR Check if ADAM service is installed AND adamdsa.dll version is less than 1.1.3790.3043 OR Vulnerable Windows Server 2003 SP2 (x86)/(x64) Windows Server 2003 SP2 (x86)/(x64) Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND Vulnerable Active Directory or ADAM IF NTDS Service is installed AND ntdsa.dll version is less than 5.2.3790.4188 OR Check if ADAM service is installed AND adamdsa.dll version is less than 1.1.3790.4188 OR Windows Server 2003 SP1 ia-64 Microsoft Windows Server 2003 SP1 for Itanium is installed AND NTDS Service is installed AND ntdsa.dll version is less than 5.2.3790.3043 OR Vulnerable Windows Server 2003 SP2 ia-64 Microsoft Windows Server 2003 (ia64) SP2 is installed AND the system is being used as AD - DomainRole is 4 or 5 AND NTDS Service is installed AND ntdsa.dll version is less than 5.2.3790.4188

Definition Id: oval:org.mitre.oval:def:5202

Oval ID:	oval:org.mitre.oval:def:5202
Title:	Microsoft Works File Converter Field Length Vulnerability
Description:	Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0108	Version:	2
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Office 2003
Definition Synopsis:
Microsoft Office 2003 is installed AND the version of works632.cnv is less than 7.3.1005.0

Definition Id: oval:org.mitre.oval:def:5240

Oval ID:	oval:org.mitre.oval:def:5240
Title:	Windows Kernel TCP/IP Vulnerability
Description:	Unspecified vulnerability in the TCP/IP support in Microsoft Windows Vista allows remote DHCP servers to cause a denial of service (hang and restart) via a crafted DHCP packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0084	Version:	4
Platform(s):	Microsoft Windows Vista	Product(s):
Definition Synopsis:
Windows Vista (32-bit/x64) Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR/GDR the version of tcpip.sys is less than 6.0.6000.16627 OR Check for LDR the version of Tcpip.sys is greater than or equal 6.0.6000.20000 AND Check if version of Tcpip.sys is less than 6.0.6000.20752

Definition Id: oval:org.mitre.oval:def:5305

Oval ID:	oval:org.mitre.oval:def:5305
Title:	Publisher Invalid Memory Reference Vulnerability
Description:	Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote attackers to execute arbitrary code via a crafted .pub file, related to invalid "memory values," aka "Publisher Invalid Memory Reference Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0102	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Publisher 2000 Microsoft Publisher 2002 Microsoft Publisher 2003
Definition Synopsis:
IF Microsoft Publisher 2000 is installed AND the version of Mspub.exe is less than 9.0.8931.0 OR Microsoft Publisher 2002 is installed AND the version of Mspub.exe is less than 10.0.6840.0 OR Microsoft Publisher 2003 is installed AND the version of Mspub.exe is less than 11.0.8200.0

Definition Id: oval:org.mitre.oval:def:5308

Oval ID:	oval:org.mitre.oval:def:5308
Title:	Internet Information Services Remote Code Execution Vulnerability
Description:	Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 through 6.0 allows remote attackers to execute arbitrary code via crafted inputs to ASP pages.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0075	Version:	5
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Internet Information Server (IIS) 5.1 Microsoft Internet Information Server (IIS) 6.0
Definition Synopsis:
Vulnerable IIS 5.1 Microsoft Windows XP SP2 or later is installed AND Microsoft IIS 5.1 is installed AND Check if version of asp.dll is less than 5.1.2600.3291 OR Vulnerable IIS 6.0 Microsoft IIS 6.0 is installed AND Vulnerable OS Vulnerable Windows XP SP1 x64/Server 2003 SP1 x86/x64/ia-64 Windows XP SP1 x64/Server 2003 SP1 x86/x64/ia-64 Microsoft Windows XP Professional x64 Edition SP1 is installed AND Microsoft Windows Server 2003 SP1 (x86) is installed AND Microsoft Windows Server 2003 SP1 (x64) is installed AND Microsoft Windows Server 2003 SP1 for Itanium is installed AND the version of asp.dll is less than 6.0.3790.3050 OR Vulnerable Windows XP SP2 x64/Server 2003 SP2 x86/x64/ia-64 Windows XP SP2 x64/Server 2003 SP2 x86/x64/ia-64 Microsoft Windows XP x64 Edition SP2 is installed AND Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND Microsoft Windows Server 2003 (ia64) SP2 is installed AND the version of asp.dll is less than 6.0.3790.4195

Definition Id: oval:org.mitre.oval:def:5309

Oval ID:	oval:org.mitre.oval:def:5309
Title:	Microsoft Works File Converter Input Validation Vulnerability
Description:	wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section length headers, aka "Microsoft Works File Converter Input Validation Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2007-0216	Version:	2
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Office 2003
Definition Synopsis:
Microsoft Office 2003 is installed AND the version of works632.cnv is less than 7.3.1005.0

Definition Id: oval:org.mitre.oval:def:5381

Oval ID:	oval:org.mitre.oval:def:5381
Title:	Mini-Redirector Heap Overflow Vulnerability
Description:	Heap-based buffer overflow in the WebDAV Mini-Redirector in Microsoft Windows XP SP2, Server 2003 SP1 and SP2, and Vista allows remote attackers to execute arbitrary code via a crafted WebDAV response.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0080	Version:	3
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista	Product(s):
Definition Synopsis:
Vulnerable Windows XP SP2 Microsoft Windows XP SP2 or later is installed AND the version of mrxdav.sys is less than 5.1.2600.3276 OR Vulnerable Windows XP x64 SP1/Server 2003 x64 SP1 Windows XP x64 SP1/Server 2003 x64 SP1 Microsoft Windows XP Professional x64 Edition SP1 is installed AND Microsoft Windows Server 2003 SP1 (x64) is installed AND the version of mrxdav.sys is less than 5.2.3790.3075 OR Vulnerable Windows XP x64 SP2/Server 2003 x64 SP2 Windows XP x64 SP2/Server 2003 x64 SP2 Microsoft Windows XP x64 Edition SP2 is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND the version of mrxdav.sys is less than 5.2.3790.4221 OR Vulnerable Windows Server 2003 SP1 (x86)/(ia-64) Windows Server 2003 SP1 (x86)/(ia-64) Microsoft Windows Server 2003 SP1 (x86) is installed AND Microsoft Windows Server 2003 SP1 for Itanium is installed AND the version of mrxdav.sys is less than 5.2.3790.3060 OR Vulnerable Windows Server 2003 SP2 (x86)/(ia-64) Windows Server 2003 SP2 (x86)/(ia-64) Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 (ia64) SP2 is installed AND the version of mrxdav.sys is less than 5.2.3790.4206 OR Vulnerable Windows Vista (32-bit)/(x64) Windows Vista (32-bit)/(x64) Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR/GDR the version of mrxdav.sys is less than 6.0.6000.16626 OR Check for LDR Check if version of mrxdav.sys is greater than or equal to 6.0.6000.20000 AND Check if version of mrxdav.sys is less than 6.0.6000.20751

Definition Id: oval:org.mitre.oval:def:5388

Oval ID:	oval:org.mitre.oval:def:5388
Title:	OLE Heap Overrun Vulnerability
Description:	Heap-based buffer overflow in Object Linking and Embedding (OLE) Automation in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, Office 2004 for Mac, and Visual basic 6.0 SP6 allows remote attackers to execute arbitrary code via a crafted script request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2007-0065	Version:	6
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista	Product(s):	Microsoft Visual Basic 6.0
Definition Synopsis:
Vulnerable Windows 2000 SP4 Microsoft Windows 2000 SP4 or later is installed AND the version of oleaut32.dll is less than 2.40.4532.0 OR Vulnerable Windows XP SP2 Microsoft Windows XP SP2 or later is installed AND the version of oleaut32.dll is less than 5.1.2600.3266 OR Vulnerable Windows XP x64 SP1/Server 2003 (x86)/(x64)/(ia-64) SP1 Windows XP x64 SP1/Server 2003 (x86)/(x64)/(ia-64) SP1 Microsoft Windows XP Professional x64 Edition SP1 is installed AND Microsoft Windows Server 2003 SP1 (x86) is installed AND Microsoft Windows Server 2003 SP1 (x64) is installed AND Microsoft Windows Server 2003 SP1 for Itanium is installed AND the version of oleaut32.dll is less than 5.2.3790.3057 OR Vulnerable Windows XP x64 SP2/Server 2003 (x86)/(x64)/(ia-64) SP2 Windows XP x64 SP2/Server 2003 (x86)/(x64)/(ia-64) SP2 Microsoft Windows XP x64 Edition SP2 is installed AND Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND Microsoft Windows Server 2003 (ia64) SP2 is installed AND the version of oleaut32.dll is less than 5.2.3790.4202 OR Vulnerable Windows Vista (32-bit)/(x64) Windows Vista (32-bit)/(x64) Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR/GDR the version of oleaut32.dll is less than 6.0.6000.16607 OR Check for LDR the version of oleaut32.dll is less than 6.0.6000.20732 AND Check if version of oleaut32.dll is greater than or equal to 6.0.6000.20000 OR Vulnerable Visual Basic 6.0 Vulnerable file version the version of oleaut32.dll is less than 2.40.4532.0 AND the version of oleaut32.dll is less than 5.2.3790.3057 AND the version of oleaut32.dll is less than 5.2.3790.4202 AND the version of oleaut32.dll is less than 6.0.6000.20732 AND the version of oleaut32.dll is less than 5.1.2600.3266 AND Check if version of oleaut32.dll is less than 2.40.4520.0 AND Check if version of oleaut32.dll is less than 5.2.3790.727 AND Check if version of oleaut32.dll is less than 3.50.5022.0 AND Microsoft Visual Basic 6.0 is installed

Definition Id: oval:org.mitre.oval:def:5389

Oval ID:	oval:org.mitre.oval:def:5389
Title:	Internet Information Services Local Privilege Elevation Vulnerability
Description:	Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFile\Root, or WWWRoot folders.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0074	Version:	3
Platform(s):	Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Microsoft Internet Information Server (IIS) 5.0 Microsoft Internet Information Server (IIS) 5.1 Microsoft Internet Information Server (IIS) 6.0 Microsoft Internet Information Server (IIS) 7.0
Definition Synopsis:
Vulnerable IIS 5.0 Microsoft Windows 2000 SP4 or later is installed AND Microsoft IIS 5.0 is installed AND the version of infocomm.dll is less than 5.0.2195.7147 OR Vulnerable IIS 5.1 Microsoft Windows XP SP2 or later is installed AND Microsoft IIS 5.1 is installed AND the version of infocomm.dll is less than 6.0.2600.3290 OR Vulnerable IIS 6.0 Microsoft IIS 6.0 is installed AND Vulnerable OS Vulnerable Windows XP x64 SP1/Server 2003 SP1 x86/x64/ia-64 Windows XP x64 SP1/Server 2003 SP1 x86/x64/ia-64 Microsoft Windows XP Professional x64 Edition SP1 is installed AND Microsoft Windows Server 2003 SP1 (x86) is installed AND Microsoft Windows Server 2003 SP1 (x64) is installed AND Microsoft Windows Server 2003 SP1 for Itanium is installed AND the version of infocomm.dll is less than 6.0.3790.3068 OR Vulnerable Windows XP x64 SP2/Server 2003 SP2 x86/x64/ia-64 Windows XP x64 SP2/Server 2003 SP2 x86/x64/ia-64 Microsoft Windows XP x64 Edition SP2 is installed AND Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND Microsoft Windows Server 2003 (ia64) SP2 is installed AND the version of infocomm.dll is less than 6.0.3790.4215 OR Vulnerable IIS 7.0 Microsoft IIS 7.0 is installed AND Vulnerable Windows Vista (32-bit)/x64 Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR/GDR the version of infocomm.dll is less than 7.0.6000.16576 OR Check for LDR Check if version of infocomm.dll is less than 7.0.6000.20698 AND Check if version of infocomm.dll is greater than or equal to 7.0.6000.20000

Definition Id: oval:org.mitre.oval:def:5396

Oval ID:	oval:org.mitre.oval:def:5396
Title:	Property Memory Corruption Vulnerability
Description:	Use-after-free vulnerability in Microsoft Internet Explorer 6 SP1, 6 SP2, and and 7 allows remote attackers to execute arbitrary code by assigning malformed values to certain properties, as demonstrated using the by property of an animateMotion SVG element, aka "Property Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0077	Version:	11
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
IE 6 on Win 2k Microsoft Windows 2000 is installed AND Internet Explorer 6 Service Pack 1 is installed AND the version of mshtml.dll is less than 6.0.2800.1607 OR IE 6 on Win XP Microsoft Windows XP (32-bit) is installed AND Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.2900.3268 OR IE 6 on Win 2003 or Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.3064 AND Win XP X64/ Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 6 on Win 2003 / Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.4210 AND Win XP X64 / Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 7 on Win 2003 platforms Microsoft Internet Explorer 7 is installed AND Win XP / Win 2K3 and IE 7 Microsoft Windows XP is installed AND Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16608 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20733 AND Mshtml.dll version is greater than 7.0.6000.20000 OR IE 7 on Win Vista platforms Microsoft Internet Explorer 7 is installed AND Windows Vista 32/ 64 bit Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16609 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20734 AND Mshtml.dll version is greater than 7.0.6000.20000

Definition Id: oval:org.mitre.oval:def:5407

Oval ID:	oval:org.mitre.oval:def:5407
Title:	Microsoft Office Execution Jump Vulnerability
Description:	Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Office document that contains a malformed object, related to a "memory handling error," aka "Microsoft Office Execution Jump Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0103	Version:	3
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Office 2000 Microsoft Office XP
Definition Synopsis:
IF Microsoft Office 2000 is installed AND the version of Vbe6.dll is less than 6.5.10.24 OR Microsoft Office XP is installed AND the version of Vbe6.dll is less than 6.5.10.24 OR Microsoft Office 2003 is installed AND the version of Vbe6.dll is less than 6.5.10.24

Definition Id: oval:org.mitre.oval:def:5481

Oval ID:	oval:org.mitre.oval:def:5481
Title:	ActiveX Object Memory Corruption Vulnerability
Description:	Stack-based buffer overflow in certain ActiveX controls in (1) FPOLE.OCX 6.0.8450.0 and (2) Foxtlib.ocx, as used in the Microsoft Visual FoxPro 6.0 fpole 1.0 Type Library; and Internet Explorer 5.01, 6 SP1 and SP2, and 7; allows remote attackers to execute arbitrary code via a long first argument to the FoxDoCmd function.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2007-4790	Version:	11
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
IE 5.01,SP4 on Win2k Microsoft Windows 2000 is installed AND Microsoft Internet Explorer 5.01 SP4 is installed AND the version of mshtml.dll is less than 5.0.3860.1000 OR IE 6 on Win 2k Microsoft Windows 2000 is installed AND Internet Explorer 6 Service Pack 1 is installed AND the version of mshtml.dll is less than 6.0.2800.1607 OR IE 6 on Win XP Microsoft Windows XP is installed AND Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.2900.3268 OR IE 6 on Win 2003 or Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.3064 AND Win XP X64/ Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 6 on Win 2003 / Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.4210 AND Win XP X64 / Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 7 on Win 2003 platforms Microsoft Internet Explorer 7 is installed AND Win XP / Win 2K3 and IE 7 Microsoft Windows XP is installed AND Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16608 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20733 AND Mshtml.dll version is greater than 7.0.6000.20000 OR IE 7 on Win Vista platforms Microsoft Internet Explorer 7 is installed AND Windows Vista 32/ 64 bit Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16609 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20734 AND Mshtml.dll version is greater than 7.0.6000.20000

Definition Id: oval:org.mitre.oval:def:5487

Oval ID:	oval:org.mitre.oval:def:5487
Title:	HTML Rendering Memory Corruption Vulnerability
Description:	Unspecified vulnerability in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via crafted HTML layout combinations, aka "HTML Rendering Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-0076	Version:	11
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
IE 5.01,SP4 on Win2k Microsoft Windows 2000 is installed AND Microsoft Internet Explorer 5.01 SP4 is installed AND the version of mshtml.dll is less than 5.0.3860.1000 OR IE 6 on Win 2k Microsoft Windows 2000 is installed AND Internet Explorer 6 Service Pack 1 is installed AND the version of mshtml.dll is less than 6.0.2800.1607 OR IE 6 on Win XP Microsoft Windows XP (32-bit) is installed AND Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.2900.3268 OR IE 6 on Win 2003 or Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.3064 AND Win XP X64/ Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 6 on Win 2003 / Win XP X64 Microsoft Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.3790.4210 AND Win XP X64 / Win 2K3 Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Microsoft Windows XP x64 is installed OR IE 7 on Win 2003 platforms Microsoft Internet Explorer 7 is installed AND Win XP / Win 2K3 and IE 7 Microsoft Windows XP is installed AND Microsoft Windows Server 2003 (32-bit) is installed AND Microsoft Windows Server 2003 (x64) is installed AND Microsoft Windows Server 2003 for Itanium is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16608 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20733 AND Mshtml.dll version is greater than 7.0.6000.20000 OR IE 7 on Win Vista platforms Microsoft Internet Explorer 7 is installed AND Windows Vista 32/ 64 bit Microsoft Windows Vista (32-bit) is installed AND Microsoft Windows Vista x64 Edition is installed AND Check for LDR / GDR the version of mshtml.dll is less than 7.0.6000.16609 OR Check for LDR Check if the version of mshtml.dll is less than 7.0.6000.20734 AND Mshtml.dll version is greater than 7.0.6000.20000

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Activex cpe:2.3:a:microsoft:activex::::::::	1
Application	Microsoft Ie cpe:2.3:a:microsoft:ie:7:windows_server_2003_sp1:::::: cpe:2.3:a:microsoft:ie:7:windows_xp_sp2:::::: cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1:::::: cpe:2.3:a:microsoft:ie:6:windows_xp_sp2:::::: cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1_itanium:::::: cpe:2.3:a:microsoft:ie:5.01:windows_2000_sp4::::::	6
Application	Microsoft Internet Explorer cpe:2.3:a:microsoft:internet_explorer:7::windows_vista_x64::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_server_2003_sp2_itanium::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_vista::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_xp_professional_x64_edition_sp2::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_server_2003_sp2::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_xp_professional_x64_edition::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_server_2003_sp1_itanium::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_server_2003_x64_edition_sp2::::: cpe:2.3:a:microsoft:internet_explorer:7::windows_server_2003_x64_edition::::: cpe:2.3:a:microsoft:internet_explorer:7:::::::* cpe:2.3:a:microsoft:internet_explorer:6::windows_server_2003_x64_edition_sp2::::: cpe:2.3:a:microsoft:internet_explorer:6::windows_server_2003_sp2_itanium::::: cpe:2.3:a:microsoft:internet_explorer:6::windows_xp_professional_x64_edition::::: cpe:2.3:a:microsoft:internet_explorer:6:sp1:::::: cpe:2.3:a:microsoft:internet_explorer:6::windows_server_2003_x64_edition::::: cpe:2.3:a:microsoft:internet_explorer:6::windows_server_2003_sp2::::: cpe:2.3:a:microsoft:internet_explorer:6:::::::* cpe:2.3:a:microsoft:internet_explorer:6:sp2:::::: cpe:2.3:a:microsoft:internet_explorer:6::windows_xp_professional_x64_edition_sp2::::: cpe:2.3:a:microsoft:internet_explorer:5.01:::::::*	20
Application	Microsoft Internet Information Server cpe:2.3:a:microsoft:internet_information_server:6.0:beta::::::	1
Application	Microsoft Internet Information Services cpe:2.3:a:microsoft:internet_information_services:6.0:::::::* cpe:2.3:a:microsoft:internet_information_services:5.0:::::::*	2
Application	Microsoft Office cpe:2.3:a:microsoft:office:2004::mac+os::::: cpe:2.3:a:microsoft:office:2003:::::::* cpe:2.3:a:microsoft:office:2003:sp3:::::: cpe:2.3:a:microsoft:office:2003:sp2:::::: cpe:2.3:a:microsoft:office:2000:sp3:::::: cpe:2.3:a:microsoft:office:2000:::::::* cpe:2.3:a:microsoft:office:xp:sp3:::::: cpe:2.3:a:microsoft:office:xp:::::::* cpe:2.3:a:microsoft:office:::mac+os:::::*	9
Application	Microsoft Publisher cpe:2.3:a:microsoft:publisher:2003:sp2:::::: cpe:2.3:a:microsoft:publisher:2002:::::::* cpe:2.3:a:microsoft:publisher:2000:::::::* cpe:2.3:a:microsoft:publisher::::::::	4
Application	Microsoft Visual Basic cpe:2.3:a:microsoft:visual_basic:6.0:sp6::::::	1
Application	Microsoft Visual Foxpro cpe:2.3:a:microsoft:visual_foxpro:6.0:::::::*	1
Application	Microsoft Webdav Mini-Redirector cpe:2.3:a:microsoft:webdav_mini-redirector::::::::	1
Application	Microsoft Word cpe:2.3:a:microsoft:word::::::::	1
Application	Microsoft Works cpe:2.3:a:microsoft:works:2005:::::::* cpe:2.3:a:microsoft:works:8.0:::::::*	2
Os	Microsoft Windows 2000 cpe:2.3:o:microsoft:windows_2000:::::::: cpe:2.3:o:microsoft:windows_2000::sp4::::::*	2
Os	Microsoft Windows 2003 Server cpe:2.3:o:microsoft:windows_2003_server:sp2:::::::* cpe:2.3:o:microsoft:windows_2003_server:sp1:::::::*	2
Os	Microsoft Windows Vista cpe:2.3:o:microsoft:windows_vista::::::::	1
Os	Microsoft Windows Xp cpe:2.3:o:microsoft:windows_xp::::::::	1

SAINT Exploits

Description	Link
Microsoft Works File Converter index table vulnerability	More info here
Microsoft Works File Converter field length buffer overflow	More info here

OpenVAS Exploits

Date	Description
2011-01-13	Name : Microsoft Windows TCP/IP Denial of Service Vulnerability (946456) File : nvt/gb_ms08-004.nasl
2011-01-13	Name : Microsoft Internet Information Services Privilege Elevation Vulnerability (94... File : nvt/gb_ms08-005.nasl
2011-01-13	Name : Vulnerability in OLE Automation Could Allow Remote Code Execution (947890) File : nvt/gb_ms08-008.nasl
2011-01-13	Name : Microsoft Internet Explorer HTML Rendering Remote Memory Corruption Vulnerabi... File : nvt/gb_ms08-010.nasl
2008-06-17	Name : Mini-Redirector Heap Overflow Vulnerability File : nvt/win_CVE-2008-0080.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
41491	Microsoft Windows Vista Crafted DHCP Response DoS
41468	Microsoft FoxPro ActiveX Web Page Parsing Unspecified Memory Corruption
41467	Microsoft IE Image Processing Argument Validation Unspecified Memory Corruption
41466	Microsoft IE animateMotion.by SVG Element by Property Memory Corruption
41465	Microsoft IE HTML Layout Rendering Unspecified Memory Corruption
41464	Microsoft Word Document Handling Unspecified Memory Corruption
41463	Microsoft Windows OLE Automation Unspecified Memory Corruption Remote Code Ex...
41462	Microsoft Office Malformed Object Parsing Memory Corruption
41461	Microsoft Active Directory / ADAM Malformed LDAP Request Remote DoS
41460	Microsoft WebDAV Mini-Redirector Response Handling Arbitrary Code Execution
41459	Microsoft Works File Converter .wps File Multiple Field Handling Arbitrary Co...
41458	Microsoft Works File Converter .wps File Header Index Table Handling Arbitrar...
41457	Microsoft Works File Converter .wps Format Header Handling Arbitrary Code Exe...
41456	Microsoft IIS File Change Handling Local Privilege Escalation
41447	Microsoft Office Publisher Memory Index Validation .pub File Handling Arbitra...
41446	Microsoft Office Publisher .pub File Handling Arbitrary Code Execution
41445	Microsoft IIS ASP Web Page Input Unspecified Arbitrary Code Execution

Information Assurance Vulnerability Management (IAVM)

Date	Description
2008-02-14	IAVM : 2008-B-0015 - Microsoft Windows Vista TCP/IP Remote Denial Of Service Vulnerability Severity : Category II - VMSKEY : V0015737
2008-02-14	IAVM : 2008-A-0005 - Microsoft Windows WebDAV Mini-Redirector Remote Code Execution Vulnerability Severity : Category I - VMSKEY : V0015742
2008-02-14	IAVM : 2008-A-0006 - Microsoft Windows OLE Automation Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0015744

Snort® IPS/IDS

Date	Description
2014-01-10	Multiple Operating Systems invalid DHCP option attempt RuleID : 7196 - Revision : 13 - Type : OS-OTHER
2017-03-01	Microsoft Works file converter field length invalid chunk size buffer overflo... RuleID : 41453 - Revision : 1 - Type : FILE-OFFICE
2016-03-14	Microsoft Visual FoxPro ActiveX clsid access RuleID : 36792 - Revision : 2 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Works file converter file section header index table stack overflow... RuleID : 17304 - Revision : 11 - Type : FILE-OFFICE
2014-01-10	Microsoft Active Directory LDAP query handling denial of service RuleID : 16433 - Revision : 3 - Type : EXPLOIT
2014-01-10	Microsoft Internet Explorer HTML+TIME animatemotion property memory corruptio... RuleID : 16382 - Revision : 11 - Type : BROWSER-IE
2014-01-10	Microsoft Active Directory LDAP query DoS attempt RuleID : 16202 - Revision : 2 - Type : WEB-MISC
2014-01-10	Microsoft Internet Explorer isindex buffer overflow attempt RuleID : 16063 - Revision : 12 - Type : BROWSER-IE
2014-01-10	Microsoft IIS ASP handling buffer overflow attempt RuleID : 15974 - Revision : 7 - Type : SERVER-IIS
2014-01-10	Microsoft IIS HTMLEncode Unicode string buffer overflow RuleID : 13922 - Revision : 11 - Type : SERVER-IIS
2014-01-10	Microsoft IIS HTMLEncode Unicode string buffer overflow RuleID : 13476 - Revision : 10 - Type : SERVER-IIS
2014-01-10	Microsoft Active Directory LDAP denial of service attempt RuleID : 13475 - Revision : 13 - Type : OS-WINDOWS
2014-01-10	Microsoft WebDAV MiniRedir remote code execution attempt RuleID : 13474 - Revision : 11 - Type : OS-WINDOWS
2014-01-10	Microsoft Works file converter field length invalid chunk size buffer overflo... RuleID : 13472 - Revision : 16 - Type : FILE-OFFICE
2014-01-10	Microsoft Office Publisher invalid pathname overwrite attempt RuleID : 13471 - Revision : 14 - Type : FILE-OFFICE
2014-01-10	Microsoft Office Publisher memory corruption attempt RuleID : 13470 - Revision : 21 - Type : FILE-OFFICE
2014-01-10	Microsoft Word ole stream memory corruption attempt RuleID : 13469 - Revision : 13 - Type : FILE-OFFICE
2014-01-10	Microsoft Works file converter file section length headers memory corruption ... RuleID : 13466 - Revision : 18 - Type : FILE-OFFICE
2014-01-10	Microsoft Forms 2.0 ActiveX function call unicode access RuleID : 13460 - Revision : 6 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Windows Forms 2.0 ActiveX function call access RuleID : 13459 - Revision : 10 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Forms 2.0 ActiveX clsid unicode access RuleID : 13458 - Revision : 6 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Windows Forms 2.0 ActiveX clsid access RuleID : 13457 - Revision : 13 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Internet Explorer DXLUTBuilder ActiveX function call unicode access RuleID : 13456 - Revision : 13 - Type : BROWSER-IE
2014-01-10	Microsoft Internet Explorer DXLUTBuilder ActiveX function call access RuleID : 13455 - Revision : 15 - Type : BROWSER-IE
2014-01-10	Microsoft Internet Explorer DXLUTBuilder ActiveX clsid unicode access RuleID : 13454 - Revision : 13 - Type : BROWSER-IE
2014-01-10	Microsoft Internet Explorer DXLUTBuilder ActiveX clsid access RuleID : 13453 - Revision : 12 - Type : BROWSER-IE
2014-01-10	Microsoft Visual FoxPro foxtlib ActiveX clsid unicode access RuleID : 13452 - Revision : 6 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Windows Visual FoxPro foxtlib ActiveX clsid access RuleID : 13451 - Revision : 10 - Type : BROWSER-PLUGINS
2014-01-10	invalid dhcp offer denial of service attempt RuleID : 13450 - Revision : 7 - Type : OS-WINDOWS
2014-01-10	Microsoft Visual FoxPro ActiveX function call unicode access RuleID : 12420 - Revision : 7 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Visual FoxPro ActiveX function call access RuleID : 12419 - Revision : 11 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Visual FoxPro ActiveX clsid unicode access RuleID : 12418 - Revision : 7 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Visual FoxPro ActiveX clsid access RuleID : 12417 - Revision : 15 - Type : BROWSER-PLUGINS

Nessus® Vulnerability Scanner

Date	Description
2010-10-20	Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms_office_feb2008.nasl - Type : ACT_GATHER_INFO
2008-06-09	Name : Arbitrary code can be executed on the remote host through Microsoft Office. File : smb_nt_ms08-011.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : It is possible to crash Active Directory on the remote host. File : smb_nt_ms08-003.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : It is possible to execute code on the remote host. File : smb_nt_ms08-004.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : A local user can elevate his privileges on the remote host. File : smb_nt_ms08-005.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : It is possible to use the remote web server to exploit arbitrary code on the ... File : smb_nt_ms08-006.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : It is possible to execute arbitrary code on the remote host. File : smb_nt_ms08-007.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : Arbitrary code can be executed on the remote host through the web or email cl... File : smb_nt_ms08-008.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : Arbitrary code can be executed on the remote host through Microsoft Word. File : smb_nt_ms08-009.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : Arbitrary code can be executed on the remote host through the web client. File : smb_nt_ms08-010.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : Arbitrary code can be executed on the remote host through Microsoft Publisher. File : smb_nt_ms08-012.nasl - Type : ACT_GATHER_INFO
2008-02-12	Name : Arbitrary code can be executed on the remote host through Office. File : smb_nt_ms08-013.nasl - Type : ACT_GATHER_INFO

Global Informations

Type	Count
CWE ID(s)	16
Oval ID(s)	17
CPE ID(s)	55
Saint Exploit(s)	2
osvdb(s)	17
Openvas Exploit(s)	5
IAVM(s)	3
Snort® Rule(s)	33
Nessus® Exploit(s)	12

	Related
10	CVE-2008-0102
10	CVE-2008-0080
10	CVE-2008-0075
10	CVE-2007-0065
9.3	CVE-2008-0109
9.3	CVE-2008-0108
9.3	CVE-2008-0105
9.3	CVE-2008-0104
9.3	CVE-2008-0103
9.3	CVE-2008-0078
9.3	CVE-2008-0076
9.3	CVE-2007-0216
8.8	CVE-2008-0077
7.8	CVE-2008-0084
7.5	CVE-2007-4790
7.2	CVE-2008-0074
6.8	CVE-2008-0088
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 17 more Alert(s)