|
Microsoft FrontPage Server Extensions SmartHTML Interpreter Buffer Overflow
|
|
|
|
|
Secunia Advisory:
|
SA7160
|
|
|
Release Date:
|
2002-09-26
|
|
Last Update:
|
2005-08-30
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Microsoft Frontpage 2000
Microsoft Frontpage 2002
Microsoft Internet Information Server (IIS) 4.0
Microsoft Internet Information Services (IIS) 5.x
Microsoft SharePoint Team Services
|
| | CVE reference: | CVE-2002-0692 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
A vulnerability has been reported in Microsoft FrontPage Server Extensions, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the SmartHTML Interpreter (shtml.dll) when processing requests for certain web files. This can be exploited to cause a buffer overflow via a specially crafted request.
FrontPage Server Extensions is installed by default on IIS 4.0, 5.0, and 5.1.
On FrontPage Server Extensions 2000, successful exploitation causes a DoS. However, on FrontPage Server Extension 2002, successful exploitation allows execution of arbitrary code.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Apply patches.
Microsoft FrontPage Server Extensions 2002 (all platforms):
http://download.microsoft.com/downloa...002/1/W98NT42KMeXP/EN-US/fpse1002.exe
SharePoint Team Services 2002:
Apply Office XP SP2.
Microsoft FrontPage Server Extension 2000 (for NT4):
http://download.microsoft.com/downloa...0/Patch/1/W9XNT4Me/EN-US/fpse0901.exe
Microsoft FrontPage Server Extensions 2000 (for WinXP):
Apply Windows XP SP1.
Microsoft FrontPage Server Extensions 2000 (for Windows 2000):
http://www.microsoft.com/downloads/release.asp?ReleaseID=42954
Provided and/or discovered by:
The vendor credits Maninder Bharadwaj, Digital Defense Services.
Changelog:
2005-08-30: Updated advisory.
Original Advisory:
MS02-053 (Q324096):
http://www.microsoft.com/technet/security/Bulletin/MS02-053.mspx
Other References:
US-CERT VU#723537:
http://www.kb.cert.org/vuls/id/723537
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
26 Related Secunia Security Advisories, displaying 10
|
|
|
1. Microsoft Internet Information Services Code Execution Vulnerability
|
|
2. Microsoft Internet Information Services Privilege Escalation
|
|
3. Microsoft Office Drawing Object Code Execution Vulnerability
|
|
4. Microsoft RichEdit OLE Dialog Memory Corruption Vulnerability
|
|
5. Microsoft Office Two Code Execution Vulnerabilities
|
|
6. Microsoft Office Multiple Code Execution Vulnerabilities
|
|
7. Microsoft Office String and Property Parsing Vulnerabilities
|
|
8. Microsoft Internet Information Services ASP Code Buffer Overflow
|
|
9. Microsoft FrontPage Server Extensions Cross-Site Scripting
|
|
10. Microsoft Windows XP IIS URL Request Handling Vulnerability
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
