Microsoft Outlook Advanced Find .oss File Handling Remote Code Execution

2007-01-09T14:48:39
ID OSVDB:31254
Type osvdb
Reporter Stuart Pearson()
Modified 2007-01-09T14:48:39

Description

Vulnerability Description

A local overflow exists in Outlook. The Advanced Search function fails to validate the contents of .oss files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Short Description

A local overflow exists in Outlook. The Advanced Search function fails to validate the contents of .oss files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

US-CERT Cyber Security Alert: TA07-009A Security Tracker: 1017488 Secunia Advisory ID:23674 Related OSVDB ID: 31252 Related OSVDB ID: 31253 News Article: http://www.eweek.com/article2/0,1895,2081067,00.asp Microsoft Security Bulletin: MS07-003 Microsoft Knowledge Base Article: 925938 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0302.html Generic Informational URL: http://www.computerterrorism.com/research/ct09-01-2007.htm FrSIRT Advisory: ADV-2007-0104 CVE-2007-0034 CERT VU: 271860 Bugtraq ID: 21936