Executive Summary
Summary | |
---|---|
Title | Microsoft Updates for Multiple Vulnerabilities |
Informations | |||
---|---|---|---|
Name | TA08-071A | First vendor Publication | 2008-03-11 |
Vendor | US-CERT | Last vendor Modification | 2008-03-11 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Microsoft has released updates that address vulnerabilities in Microsoft Office, Outlook, Excel, Excel Viewer, Office for Mac, and Office Web Components. I. Description Microsoft has released updates to address vulnerabilities that affect Microsoft Office, Outlook, Excel, Excel Viewer, Office for Mac, and Office Web Components as part of the Microsoft Security Bulletin Summary for March 2008. The most severe vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code. For more information, see the US-CERT Vulnerability Notes Database. II. Impact A remote, unauthenticated attacker could execute arbitrary code, gain elevated privileges, or cause a denial of service. III. Solution Apply updates from Microsoft Microsoft has provided updates for these vulnerabilities in the March |
Original Source
Url : http://www.us-cert.gov/cas/techalerts/TA08-071A.html |
CAPEC : Common Attack Pattern Enumeration & Classification
Id | Name |
---|---|
CAPEC-26 | Leveraging Race Conditions |
CAPEC-29 | Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions |
CAPEC-172 | Time and State Attacks |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
91 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
9 % | CWE-20 | Improper Input Validation |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:14227 | |||
Oval ID: | oval:org.mitre.oval:def:14227 | ||
Title: | Office Web Components URL Parsing Vulnerability | ||
Description: | Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via a crafted URL, aka "Office Web Components URL Parsing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-4695 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP | Product(s): | Microsoft Office 2000 Microsoft Office XP Microsoft Visual Studio .NET 2002 Microsoft Visual Studio .NET 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5114 | |||
Oval ID: | oval:org.mitre.oval:def:5114 | ||
Title: | Excel Data Validation Record Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted data validation records, aka "Excel Data Validation Record Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0111 | Version: | 9 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5190 | |||
Oval ID: | oval:org.mitre.oval:def:5190 | ||
Title: | Microsoft Office Memory Corruption Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, Excel Viewer 2003 up to SP3, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption from an "allocation error," aka "Microsoft Office Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0118 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP | Product(s): | Microsoft Office 2000 Microsoft Office 2002 Microsoft Office 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5212 | |||
Oval ID: | oval:org.mitre.oval:def:5212 | ||
Title: | Excel Rich Text Validation Vulnerability | ||
Description: | Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, Compatibility Pack, and Office 2004 and 2008 for Mac allows user-assisted remote attackers to execute arbitrary code via malformed tags in rich text, aka "Excel Rich Text Validation Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0116 | Version: | 8 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5278 | |||
Oval ID: | oval:org.mitre.oval:def:5278 | ||
Title: | Outlook URI Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0110 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Outlook |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5284 | |||
Oval ID: | oval:org.mitre.oval:def:5284 | ||
Title: | Excel File Import Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to execute arbitrary code via a crafted .SLK file that is not properly handled when importing the file, aka "Excel File Import Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0112 | Version: | 6 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:5327 | |||
Oval ID: | oval:org.mitre.oval:def:5327 | ||
Title: | Office Web Components DataSource Vulnerability | ||
Description: | Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-1201 | Version: | 6 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Office 2000 Microsoft Office XP Microsoft Visual Studio .NET 2002 Microsoft Visual Studio .NET 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5421 | |||
Oval ID: | oval:org.mitre.oval:def:5421 | ||
Title: | Microsoft Office Cell Parsing Memory Corruption Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Office Excel Viewer 2003 up to SP3 allows user-assisted remote attackers to execute arbitrary code via an Excel document with malformed cell comments that trigger memory corruption from an "allocation error," aka "Microsoft Office Cell Parsing Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0113 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Word Viewer Microsoft Excel Viewer |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:5456 | |||
Oval ID: | oval:org.mitre.oval:def:5456 | ||
Title: | Excel Style Record Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via crafted Style records that trigger memory corruption. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0114 | Version: | 9 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5508 | |||
Oval ID: | oval:org.mitre.oval:def:5508 | ||
Title: | Excel Conditional Formatting Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Excel 2000 SP3 and 2002 SP2, and Office 2004 and 2008 for Mac, allows user-assisted remote attackers to execute arbitrary code via crafted conditional formatting values, aka "Excel Conditional Formatting Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0117 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 Microsoft Excel 2002 |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:5512 | |||
Oval ID: | oval:org.mitre.oval:def:5512 | ||
Title: | Excel Formula Parsing Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office for Mac 2004 allows user-assisted remote attackers to execute arbitrary code via malformed formulas, aka "Excel Formula Parsing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0115 | Version: | 9 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5546 | |||
Oval ID: | oval:org.mitre.oval:def:5546 | ||
Title: | Macro Validation Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted macros, aka "Macro Validation Vulnerability," a different vulnerability than CVE-2007-3490. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-0081 | Version: | 8 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 | |
Application | 1 | |
Application | 1 | |
Application | 4 | |
Application | 1 | |
Application | 1 | |
Application |
| 8 |
Application | 1 | |
Application | 1 | |
Application | 2 |
SAINT Exploits
Description | Link |
---|---|
Microsoft Office Drawing Shapes memory corruption vulnerability | More info here |
Microsoft Excel conditional formatting vulnerability | More info here |
Microsoft Office Web Components OWC.Spreadsheet.9 ActiveX Control overflow | More info here |
Microsoft Excel rtAFDesc record invalid pointer access | More info here |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
42732 | Microsoft Excel Macro Validation Unspecified Code Execution Excel contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when Excel fails to validate specially-crafted macros. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity. |
42731 | Microsoft Excel Conditional Formatting Value Unspecified Code Execution |
42730 | Microsoft Excel BIFF File Format Rich Text Tag Malformed Tag Memory Corruption A buffer overflow exists in Excel. The program fails to validate BIFF files resulting in a heap overflow. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity. |
42725 | Microsoft Excel XLS Malformed Formula Memory Corruption |
42724 | Microsoft Excel Style Record Handling Memory Corruption |
42723 | Microsoft Excel SLK File Import Unspecified Arbitrary Code Execution A code execution flaw exists in Excel. The Import function fails to validate SLK files resulting in code execution via an unspecified vector. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity. |
42722 | Microsoft Excel BIFF8 Spreadsheet DVAL Record Handling Arbitrary Code Execution |
42712 | Microsoft Office Web Components DataSource Page Handling Arbitrary Code Execu... |
42711 | Microsoft Office Web Components URL Parsing Arbitrary Code Execution |
42710 | Microsoft Outlook mailto: URI Handling Arbitrary Command Execution |
42709 | Microsoft Office Unspecified Malformed Document Handling Memory Corruption An unspecified memory corruption flaw exists in Office. With a specially crafted Office file, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
42708 | Microsoft Office Excel Document (XLS) Cell Record Rebuilding Memory Corruption |
40344 | Microsoft Excel Malformed Header File Handling Remote Code Execution An unspecified memory corruption flaw exists in Excel. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity. |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2008-03-17 | IAVM : 2008-A-0015 - Microsoft Office Web Components Remote Code Execution Vulnerabilities Severity : Category II - VMSKEY : V0015760 |
2008-03-13 | IAVM : 2008-A-0014 - Microsoft Office Remote Code Execution Vulnerabilities Severity : Category II - VMSKEY : V0015761 |
2008-03-13 | IAVM : 2008-A-0012 - Microsoft Outlook Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0015764 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Office Data Source Control 9.0 ActiveX clsid unicode access RuleID : 7871 - Revision : 11 - Type : WEB-ACTIVEX |
2014-01-10 | Microsoft Office Data Source Control 9.0 ActiveX clsid access RuleID : 7870 - Revision : 16 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Office Web Components OWC.Spreadsheet.9 ActiveX clsid access attempt RuleID : 4177 - Revision : 20 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Office 2000 and 2002 Web Components Data Source Control ActiveX cls... RuleID : 4170 - Revision : 19 - Type : BROWSER-PLUGINS |
2015-01-06 | Microsoft Office Web Components OWC.Spreadsheet.9 ActiveX clsid access attempt RuleID : 32642 - Revision : 2 - Type : BROWSER-PLUGINS |
2014-11-19 | Microsoft Office Excel style record overflow attempt RuleID : 32206 - Revision : 2 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office PowerPoint malformed shapeid arbitrary code execution attempt RuleID : 26663 - Revision : 3 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office PowerPoint malformed shapeid arbitrary code execution attempt RuleID : 25587 - Revision : 6 - Type : FILE-OFFICE |
2014-01-10 | Microsoft SYmbolic LinK file magic detected RuleID : 23701 - Revision : 12 - Type : FILE-IDENTIFY |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 23459 - Revision : 3 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 23458 - Revision : 3 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 23457 - Revision : 3 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Outlook arbitrary command line attempt RuleID : 23211 - Revision : 4 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel style record overflow attempt RuleID : 22052 - Revision : 8 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 21158 - Revision : 6 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 21157 - Revision : 6 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 21156 - Revision : 6 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel File Importing Code Execution RuleID : 20062 - Revision : 13 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office PowerPoint malformed shapeid arbitrary code execution attempt RuleID : 18514 - Revision : 15 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel malformed formula parsing code execution attempt RuleID : 17655 - Revision : 15 - Type : FILE-OFFICE |
2014-01-10 | Microsoft SYmbolic LinK file magic detected RuleID : 13585 - Revision : 21 - Type : FILE-IDENTIFY |
2014-01-10 | CSV file download request RuleID : 13584 - Revision : 21 - Type : FILE-IDENTIFY |
2014-01-10 | Microsoft SYmbolic LinK file download request RuleID : 13583 - Revision : 24 - Type : FILE-IDENTIFY |
2014-01-10 | Microsoft Excel sst record arbitrary code execution attempt RuleID : 13582 - Revision : 15 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Web Components remote code execution attempt ActiveX clsid u... RuleID : 13581 - Revision : 6 - Type : WEB-ACTIVEX |
2014-01-10 | Microsoft Office Web Components remote code execution attempt ActiveX clsid a... RuleID : 13580 - Revision : 9 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Office Outlook arbitrary command line attempt RuleID : 13573 - Revision : 20 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office PowerPoint malformed shapeid arbitrary code execution attempt RuleID : 13572 - Revision : 22 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel dval record arbitrary code execution attempt RuleID : 13571 - Revision : 24 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel cf record arbitrary code excecution attempt RuleID : 13570 - Revision : 21 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel macro validation arbitrary code execution attempt RuleID : 13569 - Revision : 15 - Type : FILE-OFFICE |
2014-01-10 | Office 2000 and 2002 Web Components Data Source Control ActiveX clsid unicode... RuleID : 13468 - Revision : 6 - Type : WEB-ACTIVEX |
2014-01-10 | Office 2000 and 2002 Web Components Spreadsheet ActiveX clsid unicode access RuleID : 13467 - Revision : 5 - Type : WEB-ACTIVEX |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-10-20 | Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms_office_mar2008.nasl - Type : ACT_GATHER_INFO |
2008-03-11 | Name : Arbitrary code can be executed on the remote host through Microsoft Excel. File : smb_nt_ms08-014.nasl - Type : ACT_GATHER_INFO |
2008-03-11 | Name : Arbitrary code can be executed on the remote host through the email client. File : smb_nt_ms08-015.nasl - Type : ACT_GATHER_INFO |
2008-03-11 | Name : Arbitrary code can be executed on the remote host through Microsoft Office. File : smb_nt_ms08-016.nasl - Type : ACT_GATHER_INFO |
2008-03-11 | Name : Arbitrary code can be executed on the remote host through Microsoft Office We... File : smb_nt_ms08-017.nasl - Type : ACT_GATHER_INFO |