Microsoft Outlook 2002 mailto URI Cross Site Scripting Vulnerability

#1 Endlich

wir haben lange warten müßen

Mal wieder ein Sicherheitsloch in Outlook, aber nur in der Version 2002

Von Secunia Security Advisories

TITLE:
Microsoft Outlook 2002 mailto URI Cross Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA11076

VERIFY ADVISORY:
http://secunia.com/advisories/11076/

CRITICAL:
Highly critical

IMPACT:
Cross Site Scripting, System access

WHERE:
From remote

SOFTWARE:
Microsoft Outlook 2002
Microsoft Office XP

DESCRIPTION:
Jouko Pynnönen has discovered a vulnerability in Outlook 2002,
allowing malicious people to conduct Cross Site Scripting attacks and
execute arbitrary code in the Local Security Zone.

The problem is that input to the "mailto" parameter isn't
properly
verified before it is used to start Outlook 2002. This can be
exploited by including the """ character sequence in
the
"mailto" URI to inject arbitrary script code, which will be
executed
if Outlook starts the "Outlook Today" page.

Injected script code will be executed in the Local Security Zone.

This can be exploited through malicious HTML documents such as web
pages and emails. User interaction is not required.

This affects Microsoft Outlook 2002, which also is included in
Microsoft Office XP.

SOLUTION:
Patches are available:

Microsoft Office XP Service Pack 2
http://www.microsoft.com/downloads/details.aspx?FamilyId=52F1A951-24DB-44A5-9475-EA5D302BCA6A&displaylang=en



Microsoft Outlook 2002 Service Pack 2
http://www.microsoft.com/downloads/details.aspx?FamilyId=52F1A951-24DB-44A5-9475-EA5D302BCA6A&displaylang=en


PROVIDED AND/OR DISCOVERED BY:
Discovered by Jouko Pynnönen
Reported by iDEFENSE

ORIGINAL ADVISORY:
http://www.microsoft.com/technet/security/Bulletin/MS04-009.mspx

http://www.idefense.com/application/poi/display?id=79&type=vulnerabilities


Gruß paff
__________
http://www.downclockers.com/ourforum/index.php?board=71.0 Reverse Engineering Malware