Microsoft Office Uniform Resource Locator Validation Error Vulnerability

Overview

» IDS/IPS Signatures

Security Sites

iPolicy Networks Security Advisory


Date Discovered:	09/09/2008
Severity:	High
Applications Affected:	Microsoft Office XP SP3 Microsoft Office 2003 SP2 Microsoft Office 2003 SP3 Microsoft Office System 2007 Microsoft Office System 2007 SP1 Microsoft Office OneNote 2007 Microsoft Office OneNote 2007 SP1

Synopsis

Microsoft Office is prone to URL validation error vulnerability. The vulnerability is caused by a validation error that occurs when a specially crafted uniform resource locator is passed to open a specially crafted OneNote file.

Recommended Actions

Update the patches as guided by vendor at :
http://www.microsoft.com/technet/security/bulletin/ms08-055.mspx

Threat Analysis

Microsoft Office OneNote 2007 is a digital notebook that provides people one place to gather their notes and information, powerful search to find what they are looking for quickly, and easy-to-use shared notebooks so that they can manage information overload and work together more effectively.

A remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted URLs using the OneNote protocol handler (onenote://). The vulnerability could allow remote code execution if a user clicks a specially crafted OneNote URL.

An attacker could convince a user to click on a specially crafted uniform resource locator that references a specially crafted OneNote file leading to remote code execution.

References

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3007

Write-up by: Aditya Chaturvedi

Security Sites

“iPolicy is one of the most visionary firewall vendors in the firewall Magic Quadrant. Its architecture of a central session processing engine and multiple content blades that are able to block based on signatures, rules and so on is the closest to the network security ideal.”

Greg Young, John Pescatore
Magic Quadrant for Network Firewalls, 2H04, Gartner

| | | | | | | | |