81125 : Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
Printer | http://osvdb.org/81125 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
14	1408	about 1 year ago	2 months ago	35 times	100%

Timeline

Disclosure Date
2012-04-11

Description

A memory corruption flaw exists in multiple Microsoft products. The MSCOMCTL.TreeView, MSCOMCTL.ListView2, MSCOMCTL.TreeView2, and MSCOMCTL.ListView controls in MSCOMCTL.OCX fail to sanitize user-supplied input resulting in a memory corruption. This may allow a remote attacker to execute arbitrary code.

Classification

Location: Local / Remote, Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial, Virus / Malware
Disclosure: Vendor Verified, Discovered in the Wild

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section.

Products

Microsoft Corporation	SQL Server	2000 SP4
		2000 Analysis Services SP4
		2005 SP4
		2008 SP2
		2008 SP3
		2008 R2 for 32-bit Systems
		2008 R2 for x64-based Systems
		2008 R2 for Itanium-based Systems
	Commerce Server	2002 SP4
		2007 SP2
		2009 SP0
		2009 R2 SP0
	Visual Basic	6.0
	Visual FoxPro	8.0 SP1
	Visual FoxPro	9.0 SP2
	BizTalk Server	2002 SP1
	Office 2007	SP2
	Office 2007	SP3
	Office 2003	SP3
	Office 2010	SP1
	Office 2010	32-bit editions
	Office 2003 Web Components	SP3

References

Security Tracker: 1026899 1026900 1026902 1026903 1026904 1026905
Exploit Database: 18780
CVE ID: 2012-0158 (see also: NVD)
Microsoft Knowledge Base Article: 2597112 2598039 2598041 2641426 2645025 2647488 2647490 2655547 2658674 2658676 2658677 2664258 983807 983808 983809
Secunia Advisory ID: 48786
Bugtraq ID: 52911
ISS X-Force ID: 74372 74373
Other Advisory URL: http://contagiodump.blogspot.com/2012/08/cve-2012-0158-generated-8861-password.html
Vendor URL: http://memory.dataram.com/products-and-services/software/ramdisk
Packet Storm: http://packetstormsecurity.org/files/112176/MS12-027-MSCOMCTL-ActiveX-Buffer-Overflow.html
http://packetstormsecurity.org/files/112256/Microsoft-Security-Bulletin-Re-Release-For-April-2012.html
Mail List Post: http://seclists.org/bugtraq/2012/Nov/32
Vendor Specific Advisory URL: http://technet.microsoft.com/en-us/security/bulletin/ms12-027

Tools & Filters

	ms12_027

Credit

Not Available

CVSSv2 Score

CVSSv2 Base Score = 9.3
Source: nvd.nist.gov | Generated: 2012-04-11 | Disagree?

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Timeline

Description

Classification

Solution

Products

Microsoft Corporation

SQL Server

Commerce Server

Visual Basic

Visual FoxPro

BizTalk Server

Office 2007

Office 2003

Office 2010

Office 2003 Web Components

References

Tools & Filters

Credit

CVSSv2 Score

Comments