Microsoft Windows Knowledge Base Article 956390 update is not installed

win-ms08kb956390-update (45565) The risk level is classified as HighHigh Risk

Description:

Microsoft Knowledge Base Article 956390 is not installed, which could allow a remote attacker to exploit the following vulnerabilities:

Microsoft Internet Explorer could allow a remote attacker to bypass cross-domain security restrictions, caused by an error in the location and location.href property of a window object. By persuading a victim to visit a specially-crafted Web site, a remote attacker could bypass same-origin policy restrictions and execute JavaScript in the context of another site. An attacker could exploit this vulnerability to possibly perform cross-site scripting attacks and launch further attacks on the vulnerable system.

Microsoft Internet Explorer could allow a remote attacker to bypass cross-domain security restrictions, caused by improper handling of HTML elements. By persuading a victim to visit a malicious Web page using Internet Explorer, a remote attacker could exploit this vulnerability to bypass cross-domain security restrictions and obtain sensitive information from another security zone or domain in Internet Explorer.

In Internet Explorer 6 SP1 running on Microsoft Windows 2000 SP4, this vulnerability could allow a remote attacker to execute arbitrary code with privileges of the user.

Microsoft Internet Explorer could allow a remote attacker to bypass cross-domain security restrictions, caused by improper handling of certain events. By persuading a victim to visit a malicious Web page using Internet Explorer, a remote attacker could exploit this vulnerability to bypass cross-domain security restrictions and obtain sensitive information from another security zone or domain in Internet Explorer.

In Internet Explorer 6 SP1 running on Microsoft Windows 2000 SP4, this vulnerability could allow a remote attacker to execute arbitrary code with privileges of the user.

Microsoft Internet Explorer could allow a remote attacker to bypass cross-domain security restrictions, caused by improper interpretation of the identification of the origin of a script. By persuading a victim to visit a malicious Web page using Internet Explorer, a remote attacker could exploit this vulnerability to bypass cross-domain security restrictions and obtain sensitive information from another security zone or domain in Internet Explorer.

Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on the system, caused by a vulnerability related to the componentFromPoint() JavaScript method. By persuading a victim to visit a malicious Web page, a remote attacker could exploit this vulnerability to corrupt memory and execute arbitrary code on the system with the privileges of the victim.

Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of uninitialized memory. By persuading a victim to visit a malicious Web page, a remote attacker could exploit this vulnerability to corrupt memory and execute arbitrary code on the system with the privileges of the victim.


Consequences:

Informational

Remedy:

Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS08-058. See References.

References:

  • IBM Internet Security Systems X-Force Database: Microsoft Internet Explorer location and location.href security bypass.
  • IBM Internet Security Systems X-Force Database: Microsoft Internet Explorer script origin information disclosure.
  • IBM Internet Security Systems X-Force Database: Microsoft Internet Explorer HTML cross-domain security bypass.
  • IBM Internet Security Systems X-Force Database: Microsoft Internet Explorer event handling cross-domain security bypass.
  • IBM Internet Security Systems X-Force Database: Microsoft Internet Explorer componentFromPoint() code execution.
  • IBM Internet Security Systems X-Force Database: Microsoft Internet Explorer uninitialized memory code execution.
  • Microsoft Security Bulletin MS08-058: Cumulative Security Update for Internet Explorer (956390).
  • NORTEL BULLETIN ID: 2008009123, Rev 1: Nortel Response to Microsoft Security Bulletin MS08-058.
  • CVE-2008-2947: Cross-domain vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 7 allows remote attackers to access restricted information from other domains via JavaScript that uses the Object data type for the value of a (1) location or (2) location.href property, related to incorrect determination of the origin of web script, aka Window Location Property Cross-Domain Vulnerability. NOTE: according to Microsoft, CVE-2008-2948 and CVE-2008-2949 are duplicates of this issue, probably different attack vectors.
  • CVE-2008-3472: Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy, and execute arbitrary code or obtain sensitive information, via a crafted HTML document, aka HTML Element Cross-Domain Vulnerability.
  • CVE-2008-3473: Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy, and execute arbitrary code or obtain sensitive information, via a crafted HTML document, aka Event Handling Cross-Domain Vulnerability.
  • CVE-2008-3474: Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy and obtain sensitive information via a crafted HTML document, aka Cross-Domain Information Disclosure Vulnerability.
  • CVE-2008-3475: Microsoft Internet Explorer 6 does not properly handle errors related to using the componentFromPoint method on xml objects that have been (1) incorrectly initialized or (2) deleted, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka Uninitialized Memory Corruption Vulnerability.
  • CVE-2008-3476: Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle errors associated with access to uninitialized memory, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka HTML Objects Memory Corruption Vulnerability.

Platforms Affected:

  • Microsoft Internet Explorer 5.01 SP4
  • Microsoft Internet Explorer 6 SP1
  • Microsoft Internet Explorer 6
  • Microsoft Internet Explorer 7
  • Microsoft Windows Server 2008 Itanium
  • Microsoft Windows Server 2008 32-bit
  • Microsoft Windows Server 2008 x64
  • Microsoft Windows Vista SP1 x64
  • Microsoft Windows Vista SP1
  • Microsoft Windows Vista x64
  • Microsoft Windows 2000 SP4
  • Microsoft Windows 2003 Server x64
  • Microsoft Windows 2003 Server SP1
  • Microsoft Windows 2003 Server SP1 Itanium
  • Microsoft Windows 2003 Server SP2 x64
  • Microsoft Windows 2003 Server SP2 Itanium
  • Microsoft Windows 2003 Server SP2
  • Microsoft Windows Vista
  • Microsoft Windows XP SP2 x64 Professional
  • Microsoft Windows XP SP3
  • Microsoft Windows XP SP2
  • Microsoft Windows XP x64 Professional

Reported:

Not available

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page