Windows : Vulnerability in HTML Help Could Allow Code Execution (840315)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.13641

Categoría: Windows

Título: Vulnerability in HTML Help Could Allow Code Execution (840315)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is subject to two vulnerabilities in the HTML Help and showHelp
modules, which could allow an attacker to execute arbitrary code on the remote
host.

To exploit this flaw, an attacker would need to set up a rogue website
containing a malicious showHelp URL, and would need to lure a user on the
remote host to visit it. Once the user visits the web site, a buffer overflow
would allow the attacker to execute arbitrary commands with the privileges
of the victim user.

Solution : http://www.microsoft.com/technet/security/bulletin/ms04-023.mspx
Risk factor : High

Referencia Cruzada: BugTraq ID: 10705
BugTraq ID: 9320
Common Vulnerability Exposure (CVE) ID: CVE-2004-0201
Cert/CC Advisory: TA04-196A
http://www.us-cert.gov/cas/techalerts/TA04-196A.html
CERT/CC vulnerability note: VU#920060
http://www.kb.cert.org/vuls/id/920060
http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023919.html
Microsoft Security Bulletin: MS04-023
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-023
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1503
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1530
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2155
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3179
XForce ISS Database: win-htmlhelp-execute-code(16586)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16586
Common Vulnerability Exposure (CVE) ID: CVE-2003-1041
http://www.securityfocus.com/bid/9320
Bugtraq: 20031230 IE 5.x-6.0 allows executing arbitrary programs using showHelp() (Google Search)
http://www.securityfocus.com/archive/1/348521
CERT/CC vulnerability note: VU#187196
http://www.kb.cert.org/vuls/id/187196
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1186
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1943
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3514
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A956
XForce ISS Database: ie-showhelp-directory-traversal(14105)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14105

Copyright This script is Copyright (C) 2004 Tenable Network Security

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.13641
Categoría:	Windows
Título:	Vulnerability in HTML Help Could Allow Code Execution (840315)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is subject to two vulnerabilities in the HTML Help and showHelp modules, which could allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to set up a rogue website containing a malicious showHelp URL, and would need to lure a user on the remote host to visit it. Once the user visits the web site, a buffer overflow would allow the attacker to execute arbitrary commands with the privileges of the victim user. Solution : http://www.microsoft.com/technet/security/bulletin/ms04-023.mspx Risk factor : High
Referencia Cruzada:	BugTraq ID: 10705 BugTraq ID: 9320 Common Vulnerability Exposure (CVE) ID: CVE-2004-0201 Cert/CC Advisory: TA04-196A http://www.us-cert.gov/cas/techalerts/TA04-196A.html CERT/CC vulnerability note: VU#920060 http://www.kb.cert.org/vuls/id/920060 http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023919.html Microsoft Security Bulletin: MS04-023 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-023 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1503 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1530 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2155 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3179 XForce ISS Database: win-htmlhelp-execute-code(16586) https://exchange.xforce.ibmcloud.com/vulnerabilities/16586 Common Vulnerability Exposure (CVE) ID: CVE-2003-1041 http://www.securityfocus.com/bid/9320 Bugtraq: 20031230 IE 5.x-6.0 allows executing arbitrary programs using showHelp() (Google Search) http://www.securityfocus.com/archive/1/348521 CERT/CC vulnerability note: VU#187196 http://www.kb.cert.org/vuls/id/187196 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1186 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1943 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3514 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A956 XForce ISS Database: ie-showhelp-directory-traversal(14105) https://exchange.xforce.ibmcloud.com/vulnerabilities/14105
Copyright	This script is Copyright (C) 2004 Tenable Network Security