Lucene search
SAINT CorporationSAINT:D5F26A68930C34A48D2D1CE30ED82DFCHistoryAug 13, 2008 - 12:00 a.m.
Internet Explorer print preview argument validation vulnerability
2008-08-1300:00:00
SAINT Corporation
www.saintcorporation.com
11
0.742 High
EPSS
Percentile
97.8%
Added: 08/13/2008
CVE: CVE-2008-2259
BID: 30612
OSVDB: 47414
Background
Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems.
Problem
A flaw in the handling of validation of arguments by the print preview function in Internet Explorer allows command execution when a user loads a specially crafted web page.
Resolution
Apply the fix referenced in Microsoft Security Bulletin 08-045.
References
<http://www.microsoft.com/technet/security/bulletin/MS08-045.mspx>
Limitations
Exploit works on Microsoft Internet Explorer 6.0.2800.1106 and 6.0.2900.2180 and requires the user to load the exploit page, and then refresh the page.
This exploit requires the ability to bind to port 69/UDP on the SAINTexploit host.
Platforms
Windows 2000
Windows XP
Related
saint
saint
Internet Explorer print preview argument validation vulnerability
2008-08-13 00:00:00
Internet Explorer print preview argument validation vulnerability
2008-08-13 00:00:00
Internet Explorer print preview argument validation vulnerability
2008-08-13 00:00:00
prion
prion
Design/Logic Flaw
2008-08-13 12:42:00
cve
cve
CVE-2008-2259
2008-08-13 12:42:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Microsoft IE HTML组件处理多个内存破坏漏洞(MS08-045)
2008-08-19 00:00:00
openvas
openvas
Cumulative Security Update for Internet Explorer (953838)
2008-08-19 00:00:00
Cumulative Security Update for Internet Explorer (953838)
2008-08-19 00:00:00
nessus
nessus
MS08-045: Cumulative Security Update for Internet Explorer (953838)
2008-08-13 00:00:00
securityvulns
securityvulns