---------------------------------------------------------------------- Do you need accurate and reliable IDS / IPS / AV detection rules? Get in-depth vulnerability details: http://secunia.com/binary_analysis/sample_analysis/ ---------------------------------------------------------------------- TITLE: Microsoft Office CDO URI Handling Cross-Site Scripting SECUNIA ADVISORY ID: SA32138 VERIFY ADVISORY: http://secunia.com/advisories/32138/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: >From remote SOFTWARE: Microsoft Office XP http://secunia.com/advisories/product/23/ DESCRIPTION: A vulnerability has been reported in Microsoft Office, which can be exploited by malicious people to conduct cross-site scripting attacks. The "cdo:" URI handler does not properly handle requests containing "Content-Disposition: attachment" headers and thus renders these instead of displaying the "File Download" dialog box. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of a site. SOLUTION: Apply patches. Microsoft Office XP SP3: http://www.microsoft.com/downloads/details.aspx?familyid=b1aee2d5-bfa0-40e3-91b6-98bf65524e8c PROVIDED AND/OR DISCOVERED BY: The vendor credits NetAgent Co. ORIGINAL ADVISORY: MS08-056 (KB957699): http://www.microsoft.com/technet/security/Bulletin/MS08-056.mspx ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------