Microsoft office web components software12/8/2022 ![]() An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. When a user views the Web page, the vulnerability could allow remote code execution. ![]() An attacker could exploit the vulnerability by constructing a specially crafted Web page. A remote code execution vulnerability exists in the Office Web Components ActiveX Control. Sean Larsson of VeriSign iDefense Labs reported the Office Web Components Buffer Overflow Vulnerability (CVE-2009-1534). Peter Vreugdenhil of Zero Day Initiative and Haifei Li of Fortinet's FortiGuard Global Security Research Team reported the Office Web Components HTML Script Vulnerability (CVE-2009-1136). Peter Vreugdenhil of Zero Day Initiative reported the Office Web Components Heap Corruption Vulnerability (CVE-2009-2496). Peter Vreugdenhil of Zero Day Initiative reported the Office Web Components Memory Allocation Vulnerability (CVE-2009-0562). NET 2003, and Microsoft Office Small Business Accounting 2006. This security update is rated Critical for all supported editions of Microsoft Office XP, Microsoft Office 2003, Microsoft Office 2000 Web Components, Microsoft Office XP Web Components, Microsoft Office 2003 Web Components, Microsoft Office 2003 Web Components for the 2007 Microsoft Office system, Microsoft Internet Security and Acceleration Server 2004 Standard Edition, Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition, Microsoft Internet Security and Acceleration Server 2006, Microsoft BizTalk Server 2002, Microsoft Visual Studio. Users whose accounts are configured to have fewer user rights on the system could have less impact than users who operate with administrative user rights. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the local user. Websense® Messaging and Websense Web Security customers are protected against this attack.In August 11, 2009, Microsoft released a Security Bulletin MS09-043 regarding several privately reported vulnerabilities in Microsoft Office Web Components that could allow remote code execution if a user viewed a specially crafted Web page. ThreatSeeker is tracking this attack and we will provide updates as new information emerges. ISC also offers additional updates on this threat. This new exploit is now circulating in the wild and is suspected to be integrated to Web exploit kits. Threatseeker has spotted the attack in an IP block from China, initally found to be serving exploits for the recent MS Msvidctl Zero Day. Microsoft Security Advisory 973472 offers a workaround for the zero-day and further technical information can be found on Microsoft's Security Research and Defense blog. The vulnerable component is an ActiveX object used by Internet Explorer to display and publish spreadsheets, charts, and databases to the Web. CVE-2009-1136 has been allocated to this vulnerability. Websense Security Labs™ ThreatSeeker™ is currently tracking exploit sites related to a new zero-day vulnerability in Microsoft Office Web Components. Threat Type: Malicious Web Site / Malicious Code
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |