Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
BID:53831
Info
Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
| Bugtraq ID: | 53831 |
| Class: | Design Error |
| CVE: |
CVE-2012-1849 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 12 2012 12:00AM |
| Updated: | Jun 12 2012 12:00AM |
| Credit: | Hamburgers maccoy via Secunia SVCRP |
| Vulnerable: |
Microsoft Office Communicator 2007 R2 Microsoft Lync 2010 Attendee 0 Microsoft Lync 2010 Attendant (64-bit) 0 Microsoft Lync 2010 Attendant (32-bit) 0 Microsoft Lync 2010 0 |
| Not Vulnerable: | |
Exploit / POC
Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
Attackers must trick a user into opening a file on a remote WebDAV or SMB share to exploit this issue.
A general exploit technique has been documented by TheLeader and H.D. Moore for the Metasploit Project; please see the references for more information.
Attackers must trick a user into opening a file on a remote WebDAV or SMB share to exploit this issue.
A general exploit technique has been documented by TheLeader and H.D. Moore for the Metasploit Project; please see the references for more information.
Solution / Fix
Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
Solution:
The vendor has released an advisory and updates. Please see the references for details.
Microsoft Office Communicator 2007 R2
Microsoft Lync 2010 0
Microsoft Lync 2010 Attendant (32-bit) 0
Microsoft Lync 2010 Attendee 0
Microsoft Lync 2010 Attendant (64-bit) 0
Solution:
The vendor has released an advisory and updates. Please see the references for details.
Microsoft Office Communicator 2007 R2
-
Microsoft Security Update for Microsoft Communicator 2007 R2 (KB2708980)
http://www.microsoft.com/downloads/details.aspx?familyid=75eea324-689a -4892-bdd9-03ef399c4cba
Microsoft Lync 2010 0
-
Microsoft Security Update for Microsoft Lync 2010 (64-bit) (KB2693282)
http://www.microsoft.com/downloads/details.aspx?familyid=425406ea-28b9 -46f7-8c49-0c7ea46f16e3
Microsoft Lync 2010 Attendant (32-bit) 0
-
Microsoft Security Update for Microsoft Lync 2010 Attendant (KB2702444)
http://www.microsoft.com/downloads/details.aspx?familyid=fe7ad0f9-ee84 -4cda-b252-a8d31ead5053
Microsoft Lync 2010 Attendee 0
-
Microsoft Security Update for Microsoft Lync 2010 Attendee (admin level install) (KB2696031)
http://www.microsoft.com/downloads/details.aspx?familyid=c40f0d38-af90 -4966-a0f0-346fa48683d0 -
Microsoft Security Update for Microsoft Lync 2010 Attendee (user level install) (KB2693283)
http://www.microsoft.com/downloads/details.aspx?familyid=ad864c0e-5850 -44a3-b74f-5980a998a384
Microsoft Lync 2010 Attendant (64-bit) 0
-
Microsoft Security Update for Microsoft Lync 2010 Attendant (KB2702444)
http://www.microsoft.com/downloads/details.aspx?familyid=fe7ad0f9-ee84 -4cda-b252-a8d31ead5053
References
Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
References:
References:
- Application DLL Load Hijacking (HD Moore)
- Exploiting DLL Hijacking Flaws (hdm)
- Microsoft Homepage (Microsoft)
- More information about the DLL Preloading remote attack vector (Microsoft)
- Microsoft Security Advisory (2269637) (Microsoft)
- Microsoft Security Bulletin MS12-039 (Microsoft)