Microsoft XML Core Services Multiple Vulnerabilities - Secunia Advisories - Vulnerability Intelligence

Home > Vulnerability Intelligence > Secunia Advisories > Microsoft XML Core Services Multiple Vulnerabilities

Secunia Advisories

Advisories

Advisories by Product

Business Solutions Restricted

Partner Solutions Restricted

About

Microsoft XML Core Services Multiple Vulnerabilities
Secunia Advisory:	SA23655	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2007-01-09
Last Update:	2008-11-11
Popularity:	21,114 views

Critical:	Highly critical
Impact:	Cross Site Scripting DoS System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Professional Microsoft Windows 2000 Server Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2008 Microsoft Windows Storage Server 2003 Microsoft Windows Vista Microsoft Windows XP Home Edition Microsoft Windows XP Professional

Software:	Microsoft Expression Web 1.x Microsoft Expression Web 2.x Microsoft Office 2003 Professional Edition Microsoft Office 2003 Small Business Edition Microsoft Office 2003 Standard Edition Microsoft Office 2003 Student and Teacher Edition Microsoft Office 2007 Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Microsoft Office Groove Server 2007 Microsoft Office SharePoint Server 2007 Microsoft Word Viewer 2003 Microsoft XML Core Services (MSXML) 3.x Microsoft XML Core Services (MSXML) 4.x Microsoft XML Core Services (MSXML) 5.x Microsoft XML Core Services (MSXML) 6.x

Binary Analysis:	BA609 :: Available for 1 Credit

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2007-0099 CVE-2008-4029 CVE-2008-4033

Description: Multiple vulnerabilities have been reported in Microsoft XML Core Services, which can be exploited by malicious people to gain knowledge of sensitive information or potentially compromise a user's system. 1) A race condition when parsing XML content can be exploited to corrupt memory by reloading specially crafted XML files with nested tags in multiple iframes. Successful exploitation may allow execution of arbitrary code by e.g. tricking a user into visiting a malicious website. NOTE: This vulnerability only affects systems with Microsoft XML Core Services 3.0 installed. 2) An error in the handling of error checks for external document type definitions (DTDs) can be exploited to violate the cross-domain policy and read contents from another domain when a user e.g. visits a malicious website or views a specially crafted HTML e-mail. NOTE: This vulnerability only affects systems with Microsoft XML Core Services 3.0 or Microsoft XML Core Services 4.0 installed. 3) An error in the handling of transfer-encoding headers can be exploited to violate the cross-domain policy and read contents from another domain when a user e.g. visits a malicious website or views a specially crafted HTML e-mail. Solution: Apply patches. -- Windows 2000 -- Windows 2000 SP4 and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=559cd4b6-24b7-4e60-8749-37d9b833d3eb Windows 2000 SP4 and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows 2000 SP4 and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=59914795-60c7-4ebe-828d-f28cb457e6e3 -- Windows XP -- Windows XP SP2 and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=6ed1a087-97e2-4283-9b53-b7b046654d08 Windows XP SP3 and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=6ed1a087-97e2-4283-9b53-b7b046654d08 Windows XP SP2/SP3 and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows XP SP2 and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=59914795-60c7-4ebe-828d-f28cb457e6e3 Windows XP SP3 and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=7493fa37-2cbf-4d66-8690-d50d63da4096 Windows XP Professional x64 Edition (optionally with SP2) and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=1b79f220-ebfc-49c1-963b-58bbda21b6e7 Windows XP Professional x64 Edition (optionally with SP2) and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows XP Professional x64 Edition (optionally with SP2) and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=59914795-60c7-4ebe-828d-f28cb457e6e3 -- Windows Server 2003 -- Windows Server 2003 SP1/SP2 and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=0a0f8385-e908-4b5f-b9bf-80b7dabfcafd Windows Server 2003 SP1/SP2 and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Server 2003 SP1/SP2 and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=59914795-60c7-4ebe-828d-f28cb457e6e3 Windows Server 2003 x64 Edition (optionally with SP2) and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=347c8c83-4269-4a0e-af6f-4be2e824d22b Windows Server 2003 x64 Edition (optionally with SP2) and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Server 2003 x64 Edition (optionally with SP2) and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=59914795-60c7-4ebe-828d-f28cb457e6e3 Windows Server 2003 with SP1/SP2 for Itanium-based Systems and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=3a65e1cd-eb4e-44b6-8868-a5a84be2cb32 Windows Server 2003 with SP1/SP2 for Itanium-based Systems and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Server 2003 with SP1/SP2 for Itanium-based Systems and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=59914795-60c7-4ebe-828d-f28cb457e6e3 -- Windows Vista -- Windows Vista and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=affbc957-1867-4bbe-924d-6f0696ae0895 Windows Vista SP1 and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=affbc957-1867-4bbe-924d-6f0696ae0895 Windows Vista (optionally with SP1) and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Vista and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=cb6c4315-8c6d-43af-978b-b190b1a1577a Windows Vista SP1 and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=cb6c4315-8c6d-43af-978b-b190b1a1577a Windows Vista x64 Edition and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=b01a5f31-8c57-4c5c-909e-b37caf0439b0 Windows Vista x64 Edition SP1 and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=b01a5f31-8c57-4c5c-909e-b37caf0439b0 Windows Vista x64 Edition (optionally with SP1) and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Vista x64 Edition and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=39443046-2093-4c87-ac7b-679deab96414 Windows Vista x64 Edition SP1 and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=39443046-2093-4c87-ac7b-679deab96414 -- Windows Server 2008 -- Windows Server 2008 for 32-bit Systems and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=90a04164-4d02-4ce9-b3d8-bddb1ec27618 Windows Server 2008 for 32-bit Systems and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Server 2008 for 32-bit Systems and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=dea9f227-967f-47c7-bb2a-ed68f13645d9 Windows Server 2008 for x64-based Systems and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=b7bfe3f4-835f-402c-95b5-6d49b6935308 Windows Server 2008 for x64-based Systems and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Server 2008 for x64-based Systems and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=f16e2a5f-37fd-4ee1-aef0-597214323dc4 Windows Server 2008 for Itanium-based Systems and Microsoft XML Core Services 3.0: http://www.microsoft.com/downloads/de...=4e0d1efe-70ac-459b-b330-c0149b74f520 Windows Server 2008 for Itanium-based Systems and Microsoft XML Core Services 4.0: http://www.microsoft.com/downloads/de...=96a4413c-5261-4f69-83d0-932c430abd14 Windows Server 2008 for Itanium-based Systems and Microsoft XML Core Services 6.0: http://www.microsoft.com/downloads/de...=d4ae74e2-1b09-4a99-8cf5-8a8ca8ac6f7f -- Microsoft Office -- Office 2003 SP3 and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=7ad891a8-c3bb-4479-8282-13d629c410e3 Microsoft Word Viewer 2003 SP3 and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=7ad891a8-c3bb-4479-8282-13d629c410e3 2007 Microsoft Office System and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=27b06ee8-570a-4dc2-a230-c70d4a706245 2007 Microsoft Office System SP1 and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=27b06ee8-570a-4dc2-a230-c70d4a706245 Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=27b06ee8-570a-4dc2-a230-c70d4a706245 Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=27b06ee8-570a-4dc2-a230-c70d4a706245 Microsoft Expression Web and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=27b06ee8-570a-4dc2-a230-c70d4a706245 Microsoft Expression Web 2 and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=27b06ee8-570a-4dc2-a230-c70d4a706245 Office SharePoint Server 2007 (32-bit editions) and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=a208f2b5-2b0d-43bb-8f8a-58d4a3fc64f5 Office SharePoint Server 2007 SP1 (32-bit editions) and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=a208f2b5-2b0d-43bb-8f8a-58d4a3fc64f5 Office SharePoint Server 2007 (optionally with SP1) (64-bit editions) and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=0735f4af-e32b-4970-bed7-b2b9323cf54c Office Groove Server 2007 and Microsoft XML Core Services 5.0: http://www.microsoft.com/downloads/de...=0735f4af-e32b-4970-bed7-b2b9323cf54c Provided and/or discovered by: 1) Michal Zalewski 2) The vendor credits Gregory Fleischer. 3) The vendor credits Stefano Di Paola, Minded Security. Changelog: 2007-01-17: Added CVE reference. 2008-11-11: Added additional information from Microsoft. Updated "Solution" section. Original Advisory: MS08-069 (KB955218): http://www.microsoft.com/technet/security/Bulletin/MS08-069.mspx Michal Zalewski: http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051616.html

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

Today

New advisories:	4
New vulnerabilities:	13
Updated advisories:	5

Less // 86 views

Red Hat update for kernel

Less // 86 views

Ubuntu update for bind9

Less // 75 views

Ubuntu update for ntp

Less // 78 views

Red Hat update for bind

8th Jan, 2009

New advisories:	24
New vulnerabilities:	99
Updated advisories:	26

Moderately // 376 views

Drupal Project Module File Upload and Cross-Site Scripting

Less // 371 views

SmbFTPD Long Command Processing Vulnerability

Less // 404 views

Drupal Project Issue Tracking Module Multiple Vulnerabilities

Less // 362 views

PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability

Moderately // 402 views

Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability

Moderately // 347 views

Xdg-utils mailcap Command Execution Security Issue

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.