Microsoft Security Advisory MS02-023 - Six new serious vulnerabilities were discovered in Internet Explorer 5.01, 5.5, and 6.0. Some allow malicious web sites or HTML email to execute code, while others disclose information or allow malformed executables on a web page to download and run on the users system. Microsoft patch available here.
7b147f778fa5f76ed2a9b82c5714bdf381438322a2a03688726bcb9480e64611Microsoft Security Advisory MS02-022 - A buffer overflow in the MSN Chat control allows remote attackers to run arbitrary code if a user runs MSN Messenger or Exchange Instant Messenger. It is also possible to exploit this vulnerability via a web site or HTML email. Microsoft FAQ on this issue available here.
b87ce4858a40e34353bddfda6a10d403e7641db211ecf164002df49eb80edf8cMicrosoft Security Advisory MS02-021 - Outlook 2000 and 2002 provide the option to use Microsoft Word as the e-mail editor when creating and editing e-mail in either Rich-Text or HTML format. A security vulnerability exists when Outlook is configured this way and the user forwards or replies to a mail from an attacker. This could be exploited by sending a specially malformed HTML e-mail containing a script to an Outlook user who has Word enabled as the e-mail editor. If the user replied to or forwarded the e-mail, the script would then run, and be capable of taking any action the user could take. Microsoft FAQ on this issue available here.
af9c8675fffa8910762ed27d32e08eb80905d4226158a10cdc3c91975f932db5Microsoft Security Advisory MS02-020 - Microsoft SQL Server 7.0 and 2000 contain buffer overflows in stored procedures which allow remote attackers to execute arbitrary code in the security context in which SQL Server is running. An attacker could exploit this vulnerability in one of two ways - the attacker could attempt to load and execute a database query that calls one of the affected functions, or if a web-site or other database front-end were configured to access and process arbitrary queries, it could be possible for the attacker to provide inputs that would cause the query to call one of the functions in question with the appropriate malformed parameters. Microsoft FAQ on this issue available here.
e9aa37ecfa4622fac79e02caae7328ee79458d9a6c012915da1dea341479db03Microsoft Security Advisory MS02-019 - A serious buffer overflow has been found in IE 5.1 and Office v. X for Macintosh. The vulnerability can be exploited via HTML email or web pages. In addition, a a vulnerability that can allow local AppleScripts to be invoked by a web page without first calling the Helper application has been patched. Microsoft FAQ on this issue available here.
0df4eea8b519da3c639afe8b40d901041deccb1026f17bf145c7034c68d0de6eMicrosoft Security Advisory MS02-018 - IIS 4.0, 5.0, and 5.1 contains Ten new vulnerabilities, some of which allow remote code execution. Microsoft FAQ on this issue available here.
56ea569316e19654541134d5ca36c500f06a0822f56a57f9452fcb4f23429c0eMicrosoft Security Advisory MS02-017 - A buffer overflow in Windows NT, 2000, and XP Multiple UNC Provider (MUP) allows local users to run code with local system privileges. Microsoft FAQ on this issue available here.
0d0a190a8e1948ad828b8913add22d5cf5d74c19e00b057835d5a771346a7806Microsoft Security Advisory MS02-016 - Windows 2000 Group Policy may be bypassed by logging in twice because the first login locks the Group Policy files, preventing Policy from being applied for all users affected by the GPO. Microsoft FAQ on this issue available here.
94a300e3f6bb0343eff76c6525d5ff31fa8862c37a845c01808d273bdad54fe5Microsoft Security Advisory MS02-15 - A cumulative patch for all versions of IE - 5.01, 5.5 and IE 6 has been released which eliminates two new serious vulnerabilities. The vulnerabilities include a bug in the handling of object tags that allows attackers to invoke an commands on the user's machine and a bug in the zone determination function that allows a script embedded in a cookie to be run in the Local Computer zone. Microsoft FAQ on this issue available here.
51dbaac63d58cad3cee2fc7322e91939f598b35a02807aeb0b638fb34e9fc725Microsoft Security Advisory MS02-014 - A buffer overflow in the windows shell can be used by attackers to execute arbitrary code if certain applications have been installed and then uninstalled. Microsoft FAQ on this issue available here.
62bbeae6144ce2eecc3e2b3ca85ce87e3776b2322efcd1485d5ca7be8d4d9f71Microsoft Security Advisory MS02-013 - The version of the Microsoft VM that ships with Internet Explorer version 4.x and 5.x contains a flaw affecting how Java requests for proxy resources are handled. A malicious Java applet can exploit this to re-direct web traffic once it has left the proxy server to a destination of the attacker's choice. An attacker could use this flaw to send a user's Internet session to a system of his own control, without the user being aware of this, then forward the traffic on to the intended destination. Microsoft FAQ on this issue available here.
8c295687f73fa987218731ee8d853453ca72931d7a330e2a088ca03a8bec73f4Microsoft Security Advisory MS02-012 - The Windows 2000 mail server, Exchange 2000, has a denial of service vulnerability which allows remote attackers to stop the service. Microsoft FAQ on this issue available here.
153a883ababdef694da321c2bf0472884fc0224d83e8a9d48ca3d60c87799db4Microsoft Security Advisory MS02-011 - The Windows 2000 and Exchange 5.5 mail servers have an authentication flaw which allows remote users to send spam. An attacker who exploited the vulnerability would gain user-level privileges on the SMTP service, thereby enabling the attacker to use the service as a mail relay. Microsoft FAQ on this issue available here.
79af169e4d6ac71e1a111e5ec5b5584d6b3e277a9eb407a38f5a63ff072620feMicrosoft Security Advisory MS02-010 - In a default state, Commerce Server 2000 installs a .dll with an ISAPI which contains an unchecked buffer in a section of code that handles authentication requests. An attacker who provided authentication data that overran the buffer can cause the Commerce Server process to fail, and run code in the security context of the Commerce Server process. The process runs with LocalSystem privileges, so exploiting the vulnerability would give the attacker complete control of the server. Microsoft FAQ on this issue available here.
13acc758ec0aebe2aa7aa112e8ab8bc8d4512fc7efc589f1393909ea2d5dc852Microsoft Security Advisory MS02-009 - A flaw in how VBScript is handled in IE relating to validating cross-domain access allows scripts of one domain to access the contents of another domain in a frame. A malicious user can exploit this vulnerability by using scripting to extract the contents of frames in other domains, then sending that content back to their web site. This would enable the attacker to view files on the user's local machine or capture the contents of third-party web sites the user visited after leaving the attacker's site. The latter scenario enables attackers to learn personal information like user names, passwords, and credit card information. Microsoft FAQ on this issue available here.
0f91c98cf38ca26e32abe4c063436cd307d46cf297f3bdc535e9b7ecf3de48a6Microsoft Security Advisory MS02-008 - Microsoft XML Core Services (MSXML) contains a flaw in how the XMLHTTP control applies IE security zone settings to a redirected data stream returned in response to a request for data from a web site. A vulnerability results because an attacker could seek to exploit this flaw and specify a data source that is on the user's local system. The attacker could then use this to return information from the local system to the attacker's web site. Microsoft FAQ on this issue available here.
c0e00ca988120d2309541ceb71c2dd6a8a34a3ad5082c48b7b901fc36081ab0eMicrosoft Security Advisory MS02-007 - Microsoft SQL Server 7.0 and 2000 contains an exploitable buffer overflow in the handling of OLE DB provider names in ad hoc connections. An attacker could exploit this vulnerability in one of two ways. They could attempt to load and execute a database query that calls one of the affected functions. Conversely, if a web-site or other database front-end were configured to access and process arbitrary queries, it is possible for an attacker to provide inputs that would cause the query to call one of the functions in question with the appropriate malformed parameters. Microsoft FAQ on this issue available here.
9b4b236cd59f9142f6879b0a7f0d611db26549f96ce7f10ea6b05cc04d84c63aMicrosoft Security Advisory MS02-006 - A buffer overrun is present in all implementations of Microsoft SNMP services. Sending a malformed management request to a system running an affected version of the SNMP service, an attacker can execute code of his choice in the LocalSystem context or cause denial of service. A patch is under development to eliminate the vulnerability. In the meantime, Microsoft recommends that customers who use the SNMP service disable it. Microsoft FAQ on this issue available here.
7304dc6744937a8448ea65ff5c97d203fcd636643ccba425a0f43e66c631932fMicrosoft Security Advisory MS02-005 - A cumulative patch for IE 5.01, 5.5, and 6.0 is available which fixes six security vulnerabilities. Several of them are very serious. Microsoft FAQ on this issue available here.
9b54f193cdc4f9515a07af66bb266947fd08b7e3b1aeb50eb5602e169c5e760cMicrosoft Security Advisory MS02-004 - The Windows 2000 telnet server contains an unchecked buffer which allows remote code execution. Interix 2.2 is also affected. Microsoft FAQ on this issue available here.
84cfd0d73087f0165d71800210a169f606ec422d5815d56325b8b67aa75c9d32Microsoft Security Advisory MS02-003 - A flaw in Microsoft Exchange 2000 allows remote users to remotely access configuration information on the server. Specifically, this flaw inappropriately gives the "Everyone" group privileges to the WinReg key. This key controls the ability of users and groups to remotely connect to the Registry. Microsoft FAQ on this issue available here.
f8bc960bb1e8f246f305d98706924b5d465d40858a6425ddddfb81e122f92f85Microsoft Security Advisory MS02-002 - Malformed Network Request can cause Office v. X for Mac to Fail. Office v. X contains a network-aware anti-piracy mechanism creates a denial of service vulnerability. An attacker could use this vulnerability to cause other users' Office applications to fail, with the loss of any unsaved data. An attacker could craft and send a special packet to a victim's machine directly, by using the machine's IP address. Or, he could send this same directive to a broadcast and multicast domain and attack all affected machines. Microsoft FAQ on this issue available here.
3c1e389bcb9376114388761c54ab7b5eb1177fdfb8123d981f8dca88c3cd1426Microsoft Security Advisory - A vulnerability in the trust relationships between Windows NT or Windows 2000 domains allow attackers to insert SID's of his choice into the authorization data at the trusted domain, he could elevate his privileges to those associated with any desired user or group, including the Domain Administrators group for the trusting domain. Microsoft FAQ on this issue available here.
aea549b863534dc20171daf7a828fe0e60c7f94a84c5929a495c20d4665d8914Microsoft Security Advisory MS03-002 - The Microsoft Content Management Server 2001 contains a cross site scripting flaw in an ASP page.
74a7aed76f12d26a055fd96848693567f0b873d08688f03ea7cc1d73ea07e8abMicrosoft Security Advisory MS01-060 - SQL Server 7.0 and 2000 have several vulnerabilities. Some allow remote code execution while others are denial of service attacks. An attacker could exploit the vulnerabilities in either of two ways. The most direct way would be for the attacker to simply load and execute a database query that calls one of the affected functions. Alternatively, if a web site or other database front-end would accept and process arbitrary queries, it could be possible for the attacker to provide inputs that would cause the query to call an affected function with the appropriate parameters. Microsoft FAQ on this issue available here.
0530d56484cb8b2a5215cdfe4eb3ed9d93faf7299a0ea4afaab538a52aa688f5
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed