34 KBMicrosoft Security Bulletins
December 2008
Prior Updates:
2009
|December
|November
|October
|September
|August
|July
|June
|May
|April
|March
|February
|January
2008
|December
|November
|October
|September
|August
|July
|June
|May
|April
|March
|February
|January
2007
|December
|November
|October
|September
|August
|July
|June
|May
|April
|March
|February
|January
2006
|December
|November
|October
|September
|August
|July
|June
|May
|April
|March
|February
|January
2005
|December
|November
|October
|September
|August
|July
|June
|May
|April
|March
|February
|January
2004
|December
|November
|October
|September
|August
|July
|June
|May
|April
|March
|February
|January
Login to learn more about how Juniper Networks products can protect you from these vulnerabilities. (If you don't already have a login, see Requesting Support.)
December 2008
Microsoft Security Bulletin MS08-070
Vulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) Could Allow Remote Code Execution (932349)
Severity: CriticalVulnerabilities:
- Winsock Control Heap Overrun Vulnerability - CVE-2008-4251
A remote code execution vulnerability exists in the Winsock ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - DataGrid Control Memory Corruption Vulnerability - CVE-2008-4252
A remote code execution vulnerability exists in the DataGrid ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - FlexGrid Control Memory Corruption Vulnerability - CVE-2008-4253
A remote code execution vulnerability exists in the FlexGrid ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - Hierarchical FlexGrid Control Memory Corruption Vulnerability - CVE-2008-4254
A remote code execution vulnerability exists in the Hierarchical FlexGrid ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - Windows Common AVI Parsing Overflow Vulnerability - CVE-2008-4255
A remote code execution vulnerability exists in the Windows Common ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - Charts Control Memory Corruption Vulnerability - CVE-2008-4256
A remote code execution vulnerability exists in the Charts ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - Masked Edit Control Memory Corruption Vulnerability - CVE-2008-3704
A remote code execution vulnerability exists in the Masked Edit ActiveX Control for Visual Basic 6. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.
Microsoft Security Bulletin MS08-071
Vulnerabilities in GDI Could Allow Remote Code Execution (956802)
Severity: CriticalVulnerabilities:
- GDI Integer Overflow Vulnerability - CVE-2008-2249
A remote code execution vulnerability exists in the way that GDI handles integer calculations. The vulnerability could allow remote code execution if a user opens a specially crafted WMF image file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. - GDI Heap Overflow Vulnerability - CVE-2008-3465
A remote code execution vulnerability exists in the way that GDI handles file size parameters in WMF files. The vulnerability could allow remote code execution if a third-party application uses a specific Microsoft API to copy a specially crafted WMF image file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
Microsoft Security Bulletin MS08-072
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (957173)
Severity: CriticalVulnerabilities:
- Word Memory Corruption Vulnerability - CVE-2008-4024
A remote code execution vulnerability exists in the way that Word handles specially crafted Word files. The vulnerability could allow remote code execution if a user opens a specially crafted Word file with a malformed record. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. - Word RTF Object Parsing Vulnerability - CVE-2008-4025
A remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted Rich Text Format (RTF) files. The vulnerability could allow remote code execution if a user opens a specially crafted RTF file in Word or reads a specially crafted e-mail sent in the RTF format. An attacker who successfully exploited this vulnerability could take control of an affected system in the context of the currently logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - Word Memory Corruption Vulnerability - CVE-2008-4026
A remote code execution vulnerability exists in the way that Word handles specially crafted Word files. The vulnerability could allow remote code execution if a user opens a specially crafted Word file with a malformed value. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. - Word RTF Object Parsing Vulnerability - CVE-2008-4027
A remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted Rich Text Format (RTF) files. The vulnerability could allow remote code execution if a user opens a RTF file with specially crafted control words in Word or previews a RTF file with specially crafted control words in rich text e-mail. An attacker who successfully exploited this vulnerability could take control of an affected system in the context of the currently logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - Word RTF Object Parsing Vulnerability - CVE-2008-4030
A remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted Rich Text Format (RTF) files. The vulnerability could allow remote code execution if a user opens a specially crafted RTF file in Word or reads a specially crafted e-mail sent in the RTF format. An attacker who successfully exploited this vulnerability could take control of an affected system in the context of the currently logged-in user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - Word RTF Object Parsing Vulnerability - CVE-2008-4028
A remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted Rich Text Format (RTF) files. The vulnerability could allow remote code execution if a user opens a specially crafted RTF file in Word or reads a specially crafted e-mail sent in the RTF format. An attacker who successfully exploited this vulnerability could take control of an affected system in the context of the currently logged-in user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - Word RTF Object Parsing Vulnerability - CVE-2008-4031
A remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted Rich Text Format (RTF) files. The vulnerability could allow remote code execution if a user opens a specially crafted RTF file in Word or reads a specially crafted e-mail sent in the RTF format. An attacker who successfully exploited this vulnerability could take control of an affected system in the context of the currently logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - Word Memory Corruption Vulnerability - CVE-2008-4837
A remote code execution vulnerability exists in the way that Microsoft Word handles specially crafted Word files. The vulnerability could allow remote code execution if a user opens a specially crafted Word file that includes a malformed record value. An attacker who successfully exploited this vulnerability could take control of an affected system in the context of the current logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Microsoft Security Bulletin MS08-073
Cumulative Security Update for Internet Explorer (958215)
Severity: CriticalVulnerabilities:
- Parameter Validation Memory Corruption Vulnerability - CVE-2008-4258
A remote code execution vulnerability exists in the way Internet Explorer handles certain navigation methods. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - HTML Objects Memory Corruption Vulnerability - CVE-2008-4259
A remote code execution vulnerability exists in Internet Explorer due to attempts to access uninitialized memory in certain situations. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - Uninitialized Memory Corruption Vulnerability – CVE-2008-4260
A remote code execution vulnerability exists in the way Internet Explorer accesses an object that has been deleted. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. - HTML Rendering Memory Corruption Vulnerability - CVE-2008-4261
A remote code execution vulnerability exists in the way Internet Explorer embeds objects into a Web page. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
Microsoft Security Bulletin MS08-074
Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070)
Severity: CriticalVulnerabilities:
- File Format Parsing Vulnerability - CVE-2008-4265
A remote code execution vulnerability exists in Microsoft Excel as a result of memory corruption when loading Excel records. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file that includes a malformed object. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - File Format Parsing Vulnerability - CVE-2008-4264
A remote code execution vulnerability exists in Microsoft Excel as a result of pointer corruption when loading Excel formulas. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file that includes a malformed formula. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. - Excel Global Array Memory Corruption Vulnerability - CVE-2008-4266
A remote code execution vulnerability exists in Microsoft Excel as a result of stack corruption when loading Excel records. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file that includes a malformed object. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Microsoft Security Bulletin MS08-075
Vulnerabilities in Windows Search Could Allow Remote Code Execution (959349)
Severity: CriticalVulnerabilities:
- Windows Saved Search Vulnerability - CVE-2008-4268
A remote code execution vulnerability exists when saving a specially crafted search file within Windows Explorer. This operation causes Windows Explorer to exit and restart in an exploitable manner. - Windows Search Parsing Vulnerability - CVE-2008-4269
A remote code execution vulnerability exists in Windows Explorer which allows an attacker to construct a malicious web page that includes a call to the search-ms protocol handler, which passes untrusted data to Windows Explorer.
Microsoft Security Bulletin MS08-076
Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
Severity: ImportantVulnerabilities:
- SPN Vulnerability - CVE-2008-3009
A credential reflection attack vulnerability exists in Windows Media Components that could allow an attacker to execute code with the same rights as the local user. The vulnerability exists due to weaknesses in Service Principle Name (SPN) implementations for Windows Media Components. For additional information on how SPNs should be formatted, see Name Formats for Unique SPNs. - ISATAP Vulnerability - CVE-2008-3010
Any Windows Media Component client that accesses a URL that uses an ISATAP address could result in the Windows Media Component leaking the NTLM credentials to the server that the URL is hosted from. This could allow an attacker who is external to the intranet zone to gather NTLM credentials for an enterprise environment.
Microsoft Security Bulletin MS08-077
Vulnerability in Microsoft Office Sharepoint Server Could Cause Elevation of Privilege (957175)
Severity: ImportantVulnerabilities:
- Access Control Vulnerability - CVE-2008-4032
An elevation of privilege vulnerability exists in Microsoft Office Sharepoint Server 2007 and Microsoft Office Sharepoint Server 2007 SP1. The vulnerability could allow elevation of privliage if a user forcefully browses to a Sharepoint URL, bypassing authentication to a subset of administrative functions.
Microsoft Security Bulletin MS08-078
Security Update for Internet Explorer (960714)
Severity: CriticalVulnerabilities:
- Pointer Reference Memory Corruption Vulnerability - CVE-2008-4844
A remote code execution vulnerability exists as an invalid pointer reference in the data binding function of Internet Explorer. When data binding is enabled (which is the default state), it is possible under certain conditions for an object to be released without updating the array length, leaving the potential to access the deleted object's memory space. This can cause Internet Explorer to exit unexpectedly, in a state that is exploitable. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.
