Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
BID:20915
Info
Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
| Bugtraq ID: | 20915 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-5745 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 03 2006 12:00AM |
| Updated: | May 15 2007 08:48PM |
| Credit: | The vendor credits Robert Freeman of ISS, and Dror Shalev and Moti Jospeh of Checkpoint with the discovery of this vulnerability. |
| Vulnerable: |
Microsoft XML Core Services 6.0 Microsoft XML Core Services 4.0 HP Storage Management Appliance 2.1 Avaya S8100 Media Servers R9 Avaya S8100 Media Servers R8 Avaya S8100 Media Servers R7 Avaya S8100 Media Servers R6 Avaya S8100 Media Servers R12 Avaya S8100 Media Servers R11 Avaya S8100 Media Servers R10 Avaya S8100 Media Servers 0 Avaya Messaging Application Server 0 |
| Not Vulnerable: | |
Discussion
Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
Microsoft XML Core Service is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code within the affected application, facilitating the remote compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.
Microsoft XML Core Service is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code within the affected application, facilitating the remote compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.
Exploit / POC
Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
UPDATE (May 15, 2007): This issue is being exploited by the MPack hacker tool. Please see the references for more information.
The following exploits are available:
UPDATE (May 15, 2007): This issue is being exploited by the MPack hacker tool. Please see the references for more information.
The following exploits are available:
Solution / Fix
Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
Solution:
Microsoft has released security advisory MS06-071 addressing this issue in supported versions of affected applications. Please see the references for more information.
Microsoft XML Core Services 6.0
Microsoft XML Core Services 4.0
Solution:
Microsoft has released security advisory MS06-071 addressing this issue in supported versions of affected applications. Please see the references for more information.
Microsoft XML Core Services 6.0
-
Microsoft Vulnerabilities in Microsoft XML Core Services 6.0 Could Allow Remote Code Execution (927977)
http://www.microsoft.com/downloads/details.aspx?familyid=9AE7F4E9-8228 -4098-AF71-49C35684C17E&displaylang=en
Microsoft XML Core Services 4.0
-
Microsoft Vulnerabilities in Microsoft XML Core Services 4.0 Could Allow Remote Code Execution (927978)
http://www.microsoft.com/downloads/details.aspx?familyid=24B7D141-6CDF -4FC4-A91B-6F18FE6921D4&displaylang=en
References
Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
References:
References:
- Microsoft Security Bulletin MS06-071 - Vulnerability in Microsoft XML Core Servi (Microsoft)
- MPack Uncovered (pdf document) (PandaLabs)
- Vendor Home Page (Microsoft)
- Avaya: Microsoft Security Bulletin Summary for November 2006 MS06-66 - MS06-71 (Avaya)
- Microsoft Security Advisory (927892) (Microsoft)