Info

Disclosure

May 31, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Aug 08, 2006

Description

A remote overflow exists in Microsoft Windows. Microsoft Windows fails to perform proper boundary checks in inetcomm.dll when processing URLs with the "mhtml:" URI handler resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary remote code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Rumored
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	XP SP2
		XP Professional x64 Edition
	Windows Server	2003 SP1
		2003 SP1 for Itanium
		2003 x64 Edition

References

Security Tracker: 1016654
Bugtraq ID: 18198
CVE ID: 2006-2766 (see also: NVD)
Secunia Advisory ID: 20384
SCIP VulDB ID: 2275
ISS X-Force ID: 26810
CERT VU: 891204
VUPEN Advisory: ADV-2006-2088
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-05/0695.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0710.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0717.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0769.html
Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/Bulletin/MS06-043.mspx
US-CERT Cyber Security Alert: http://www.us-cert.gov/cas/techalerts/TA06-220A.html
Microsoft Security Bulletin: ms06-043

Credit

Mr.Niega - Mr.Niegagmail.com -

Direct URL: http://osvdb.org/25949

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

Windows Server

References

Credit