Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:H/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
Microsoft Excel
(2000, 2000 SP3, 2002, 2002 SP3, 2003, 2003 SP2, 2004 for Mac, v. X for Mac)
Microsoft Excel Viewer
(2003 )
Microsoft Office
(WorkSuite 2000, WorkSuite 2001, WorkSuite 2002, WorkSuite 2003, WorkSuite 2004, WorkSuite 2005, WorkSuite 2006)
Microsoft Outlook
(2000, 2002)
Microsoft PowerPoint
(2000, 2002)
Microsoft Word
(2000, 2000 SP3, 2002, 2002 SP3)
Описание
В пакете Office существует уязвимость удаленного запуска кода. Злоумышленник может воспользоваться этой уязвимостью, создав специальный маршрут в документе Office, который делает возможным удаленное выполнение кода. Воспользовавшись уязвимостью, злоумышленник может захватить полный контроль над системой.
Как исправить
Используйте рекомендации производителя:
http://www.microsoft.com/technet/security/Bulletin/MS06-012.mspx
http://www.microsoft.com/technet/security/Bulletin/MS06-012.mspx
Ссылки
MS (MS06-012): http://www.microsoft.com/technet/security/bulletin/ms06-012.mspx
CERT-VN (VU#682820): http://www.kb.cert.org/vuls/id/682820
SECTRACK (1015766): http://securitytracker.com/id?1015766
CERT (TA06-073A): http://www.us-cert.gov/cas/techalerts/TA06-073A.html
BUGTRAQ (20060314 SYMSA-2006-001: Buffer overflow in Microsoft Office 2000, Office XP (2002), and Office 2003 Routing Slip Metadata): http://www.securityfocus.com/archive/1/archive/1/427671/100/0/threaded
BID (17000): http://www.securityfocus.com/bid/17000
http://www.symantec.com/enterprise/research/SYMSA-2006-001.txt
FRSIRT (ADV-2006-0950): http://www.frsirt.com/english/advisories/2006/0950
OSVDB (23903): http://www.osvdb.org/23903
XF (office-routing-slip-bo(25009)): http://xforce.iss.net/xforce/xfdb/25009
http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm
BUGTRAQ (20060819 New PowerPoint 0-day and Trojan - FAQ document ready): http://www.securityfocus.com/archive/1/archive/1/443890/100/0/threaded
FULLDISC (20060822 Major updates in PowerPoint FAQ document - not a 0-day issue): http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0597.html
http://isc.sans.org/diary.php?storyid=1618
http://blogs.securiteam.com/?p=557
http://blogs.securiteam.com/?p=559
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ%5FMDROPPER%2EBH
http://www.darkreading.com/document.asp?doc_id=101970
SECTRACK (1016720): http://securitytracker.com/id?1016720
BUGTRAQ (20060822 Major updates in PowerPoint FAQ document - not a 0-day issue): http://www.securityfocus.com/archive/1/archive/1/444051/100/200/threaded
FULLDISC (20060919 New PowerPoint 0-day Trojan in the wild): http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049540.html
http://blogs.securiteam.com/?author=28
http://www.symantec.com/security_response/writeup.jsp?docid=2006-091810-5028-99
BID (20059): http://www.securityfocus.com/bid/20059
FRSIRT (ADV-2006-3678): http://www.frsirt.com/english/advisories/2006/3678
XF (powerpoint-presentation-code-execution(29009)): http://xforce.iss.net/xforce/xfdb/29009
BUGTRAQ (20060919 Microsoft PowerPoint 0-day Vulnerability FAQ - September written): http://www.securityfocus.com/archive/1/archive/1/446425/100/0/threaded
BUGTRAQ (20060919 New PowerPoint 0-day Trojan in the wild): http://www.securityfocus.com/archive/1/archive/1/446370/100/0/threaded
SECTRACK (1016886): http://securitytracker.com/id?1016886
OVAL (oval:org.mitre.oval:def:1504): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1504
OVAL (oval:org.mitre.oval:def:1553): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1553
OVAL (oval:org.mitre.oval:def:1653): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1653
OVAL (oval:org.mitre.oval:def:798): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:798
BUGTRAQ (20060422 PowerPoint Phishing Trojan): http://www.securityfocus.com/archive/1/archive/1/432004/30/5340/threaded
CERT-VN (VU#682820): http://www.kb.cert.org/vuls/id/682820
SECTRACK (1015766): http://securitytracker.com/id?1015766
CERT (TA06-073A): http://www.us-cert.gov/cas/techalerts/TA06-073A.html
BUGTRAQ (20060314 SYMSA-2006-001: Buffer overflow in Microsoft Office 2000, Office XP (2002), and Office 2003 Routing Slip Metadata): http://www.securityfocus.com/archive/1/archive/1/427671/100/0/threaded
BID (17000): http://www.securityfocus.com/bid/17000
http://www.symantec.com/enterprise/research/SYMSA-2006-001.txt
FRSIRT (ADV-2006-0950): http://www.frsirt.com/english/advisories/2006/0950
OSVDB (23903): http://www.osvdb.org/23903
XF (office-routing-slip-bo(25009)): http://xforce.iss.net/xforce/xfdb/25009
http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm
BUGTRAQ (20060819 New PowerPoint 0-day and Trojan - FAQ document ready): http://www.securityfocus.com/archive/1/archive/1/443890/100/0/threaded
FULLDISC (20060822 Major updates in PowerPoint FAQ document - not a 0-day issue): http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0597.html
http://isc.sans.org/diary.php?storyid=1618
http://blogs.securiteam.com/?p=557
http://blogs.securiteam.com/?p=559
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ%5FMDROPPER%2EBH
http://www.darkreading.com/document.asp?doc_id=101970
SECTRACK (1016720): http://securitytracker.com/id?1016720
BUGTRAQ (20060822 Major updates in PowerPoint FAQ document - not a 0-day issue): http://www.securityfocus.com/archive/1/archive/1/444051/100/200/threaded
FULLDISC (20060919 New PowerPoint 0-day Trojan in the wild): http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049540.html
http://blogs.securiteam.com/?author=28
http://www.symantec.com/security_response/writeup.jsp?docid=2006-091810-5028-99
BID (20059): http://www.securityfocus.com/bid/20059
FRSIRT (ADV-2006-3678): http://www.frsirt.com/english/advisories/2006/3678
XF (powerpoint-presentation-code-execution(29009)): http://xforce.iss.net/xforce/xfdb/29009
BUGTRAQ (20060919 Microsoft PowerPoint 0-day Vulnerability FAQ - September written): http://www.securityfocus.com/archive/1/archive/1/446425/100/0/threaded
BUGTRAQ (20060919 New PowerPoint 0-day Trojan in the wild): http://www.securityfocus.com/archive/1/archive/1/446370/100/0/threaded
SECTRACK (1016886): http://securitytracker.com/id?1016886
OVAL (oval:org.mitre.oval:def:1504): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1504
OVAL (oval:org.mitre.oval:def:1553): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1553
OVAL (oval:org.mitre.oval:def:1653): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1653
OVAL (oval:org.mitre.oval:def:798): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:798
BUGTRAQ (20060422 PowerPoint Phishing Trojan): http://www.securityfocus.com/archive/1/archive/1/432004/30/5340/threaded