Microsoft IE Multiple COM Object Embedded CLSID Arbitrary Remote Code Execution

2005-08-09T16:09:00
ID OSVDB:18612
Type osvdb
Reporter Hu Qianwei()
Modified 2005-08-09T16:09:00

Description

Vulnerability Description

Windows contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when Internet Explorer does not properly call interface arguments when instantiating COM components in devenum.dll. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Short Description

Windows contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when Internet Explorer does not properly call interface arguments when instantiating COM components in devenum.dll. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

References:

Security Tracker: 1014643 Secunia Advisory ID:16373 Related OSVDB ID: 18610 Related OSVDB ID: 18611 Other Advisory URL: http://www.nsfocus.com/english/homepage/research/0502.htm Microsoft Security Bulletin: MS05-038 Microsoft Knowledge Base Article: 896727 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0587.html Keyword: NSFOCUS Security Advisory(SA2005-02) Generic Informational URL: http://www.eweek.com/article2/0,1895,1846283,00.asp Generic Exploit URL: http://www.frsirt.com/exploits/20050811.MS05-038.c.php Generic Exploit URL: http://www.securiteam.com/exploits/5BP0H00GKA.html CVE-2005-1990 CIAC Advisory: p-265 CERT VU: 959049 Bugtraq ID: 14511