|
 |
|
Microsoft Visual Studio WMI Object Broker ActiveX Control Code Execution
|
|
|
|
|
Secunia Advisory:
|
SA22603
|
|
|
Release Date:
|
2006-11-01
|
|
Last Update:
|
2006-12-12
|
|
|
Critical:
|
Extremely critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Microsoft Visual Studio 2005
|
| | CVE reference: | CVE-2006-4704 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
A vulnerability has been reported in Microsoft Visual Studio, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an unspecified error in the validation of controls instantiated by WMI Object Broker ActiveX control (WmiScriptUtils.dll).
Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious website using Internet Explorer.
NOTE: The vulnerability is already being actively exploited.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Apply patch.
Microsoft Visual Studio 2005:
http://www.microsoft.com/downloads/de...=C2682C53-8E9A-4C7D-B782-BE78512DCBFA
Provided and/or discovered by:
Discovered as a 0-day.
Sample exploit provided by Michal Bucko (sapheal), hack.pl.
Also discovered by an anonymous person and reported via ZDI.
Changelog:
2006-11-01: Updated credits.
2006-11-02: Added link to US-CERT.
2006-12-12: Updated "Solution" section. Added additional information provided by Microsoft.
Original Advisory:
MS06-073 (KB925674):
http://www.microsoft.com/technet/security/Bulletin/MS06-073.mspx
Microsoft:
http://www.microsoft.com/technet/security/advisory/927709.mspx
ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-06-047.html
Other References:
US-CERT VU#854856:
http://www.kb.cert.org/vuls/id/854856
Reason for Rating:
The "Reason for Rating" section is available for Secunia customers only. Request a trial and get access to the Secunia Customer Area and Extended Secunia advisories.
Extended Solution:
The "Extended Solution" section is available for Secunia customers only. Request a trial and get access to the Secunia Customer Area and Extended Secunia advisories.
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
2 Related Secunia Security Advisories
|
|
|
1. Visual Studio Crystal Reports RPT Processing Buffer Overflow
|
|
2. Microsoft Visual Studio User Control Load Event Vulnerability
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
