Info

Disclosure

Feb 13, 2007

Discovery

May 01, 2006

Dates

Exploit

Unknown

Solution

Feb 13, 2007

Description

A local overflow exists in Step-by-Step Interactive Traing. The program fails to validate the Syllabus string when opening .cbo files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Commercial
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation

Step-by-Step Interactive Training

Unspecified

References

Security Tracker: 1017632
CVE ID: 2006-3448 (see also: NVD)
Bugtraq ID: 22484
Secunia Advisory ID: 24121
SCIP VulDB ID: 2926
ISS X-Force ID: 30596
CERT VU: 466873
Microsoft Knowledge Base Article: 923723
VUPEN Advisory: ADV-2007-0574
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-02/0221.html
Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/Bulletin/MS07-005.mspx
Generic Exploit URL: http://www.saintcorporation.com
http://www.saintcorporation.com/cgi-bin/exploit_info/microsoft_ssit_bookmark
Microsoft Security Bulletin: MS07-005

Credit

Brett Moore - brett.mooresecurity-assessment.com - Security Assessment

Direct URL: http://osvdb.org/31883