OSVDB ID: 18612

Title: Microsoft IE Multiple COM Object Embedded CLSID Arbitrary Remote Code Execution

Info

Disclosure

Aug 09, 2005

Discovery

Jul 13, 2005

Dates

Exploit

Aug 11, 2005

Solution

Aug 09, 2005

Description

Windows contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when Internet Explorer does not properly call interface arguments when instantiating COM components in devenum.dll. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	2000 SP4
		XP SP1
		XP SP2
		XP Professional x64 Edition
		98
		98 SE
		ME
	Windows Server	2003
		2003 SP1
		2003 for Itanium
		2003 for Itanium SP1
		2003 x64 Edition

References

Security Tracker: 1014643
Bugtraq ID: 14511
Secunia Advisory ID: 16373
Related OSVDB ID: 18610 18611
CVE ID: 2005-1990 (see also: NVD)
Microsoft Knowledge Base Article: 896727
CERT VU: 959049
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0587.html
Generic Informational URL: http://www.eweek.com/article2/0,1895,1846283,00.asp
Generic Exploit URL: http://www.frsirt.com/exploits/20050811.MS05-038.c.php
http://www.saintcorporation.com
http://www.saintcorporation.com/cgi-bin/exploit_info/ie_com_instantiation
http://www.securiteam.com/exploits/5BP0H00GKA.html
Other Advisory URL: http://www.nsfocus.com/english/homepage/research/0502.htm
Microsoft Security Bulletin: MS05-038
Keyword: NSFOCUS Security Advisory(SA2005-02)
CIAC Advisory: p-265

Credit

Hu Qianwei - -

Direct URL: http://osvdb.org/18612

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

Windows Server

References

Credit