Content

(MS06-061) Microsoft XML Core Services Vulnerability (924191)

Type
Logic error
Impact of exploitation
Information disclosure
User Interaction
user interaction is needed
Attack Vector
Website or e-mail with malicious content
Rating
Medium
CVE reference
CVE-2006-4685,
Vendor Status
Responded and patched
Vulnerable systems
Windows XP  SP0 - SP2,
Windows 2003  SP0 - SP1,
Windows 2000  SP4,
Core Services   3.0,
Core Services   3.0 SP3,
Core Services   3.0 SP 5,
Core Services   3.0 SP 4,
Core Services   3.0 SP 7,
Core Services   5.0 SP 1,
Core Services   4.0,
Summary
A vulnerability exists in the Microsoft XML Core Services that may allow for disclosure of sensitive information. Exploitation could be achieved when a victim visits a malicious website or opens a specially-crafted email.

Tab Navigation

Description

Microsoft XML Core Services allow for XML application building in Microsoft Visual Studio. A vulnerability is present in the XML Core Services that may allow for disclosure of sensitive information to remote attackers. Successful exploitation would involve coercing a victim to an attacker-controlled website or having them open a specially-crafted email. The flaw is due to improper server-side redirect processing by XMLHTTP.

McAfee Product Mitigation & Recommendations

Recommendations

Download and install the patch available from Microsoft(924191): http://www.microsoft.com/technet/security/Bulletin/MS06-061.mspx

McAfee Product Mitigation

McAfee Foundstone

This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.

Signature:
(MS06-057) Microsoft XML Core Services Vulnerability (924191)
Signature identifier:
4673
Release date:
10/10/2006

Additional Resources

Microsoft Security Bulletin: Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (924191)

http://www.microsoft.com/technet/security/Bulletin/MS06-061.mspx

All Information

Timeline -

10/10/2006

Vendor has provided a patch.

Description -

Microsoft XML Core Services allow for XML application building in Microsoft Visual Studio. A vulnerability is present in the XML Core Services that may allow for disclosure of sensitive information to remote attackers. Successful exploitation would involve coercing a victim to an attacker-controlled website or having them open a specially-crafted email. The flaw is due to improper server-side redirect processing by XMLHTTP.

McAfee Product Mitigation & Recommendations

Recommendations -

Download and install the patch available from Microsoft(924191): http://www.microsoft.com/technet/security/Bulletin/MS06-061.mspx

McAfee Product Mitigation

McAfee Foundstone

This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.

Signature:
(MS06-057) Microsoft XML Core Services Vulnerability (924191)
Signature identifier:
4673
Release date:
10/10/2006

Additional Resources

Additional Resources -

Microsoft Security Bulletin: Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (924191)

http://www.microsoft.com/technet/security/Bulletin/MS06-061.mspx