Microsoft Black Tuesday - February 2007

Michael Sutton's Blog

Home
Contact

Syndication

Archives

This month Microsoft decided to play catch-up and hit us with a hefty 12 security bulletins covering 20 vulnerabilities, 13 of which were critical. The volume was not surprising given that Microsoft pulled four of eight planned bulletins four days before the January release. We had also been anxiously awaiting patches for a growing number of Microsoft Word vulnerabilities which had been outstanding for up to two months, with public exploit code being available along with admissions from Microsoft of active exploitation. Fortunately, all now appear to have patches available. Once again, client side vulnerabilities were king, with most of the critical vulnerabilities falling into this category.

The February patch release was significant leaving us with 20 vulnerabilities in 12 bulletins having the following overall severity rankings.

13 Critical
7 Important

This month's bulletins included patches for 7 public vulnerabilities, most of which were already being actively exploited. The following publicly known issues received patches:

MS07-009 (CVE-2006-5559) Microsoft Windows MDAC ActiveX Vulnerability
MS07-014 (CVE-2006-5994) Word Malformed String Vulnerability
MS07-014 (CVE-2006-6456) Word Malformed Data Structures Vulnerability
MS07-014 (CVE-2006-6561) Word Count Vulnerability
MS07-014 (CVE-2007-0515) Word Malformed Function Vulnerability
MS07-015 (CVE-2007-0671) Excel Malformed Record Vulnerability
MS07-016 (CVE-2006-4697) COM Object Memory Instantiation Vulnerability

Below is a cheat sheet for all 20 vulnerabilities.

Enjoy!

- michael

Bulletin	Title
MS07-005	Interactive Training Vulnerability CVE-2006-3448 Important Discovered By: Brett Moore of Security-Assessment.com Public: No Exploited: No Advisory: Security-Assessment.com
MS07-006	Windows Shell Hardware Detection Vulnerability CVE-2007-0211 Important Public: No Exploited: No
MS07-007	Windows Image Acquisition Vulnerability CVE-2007-0210 Important Public: No Exploited: No
MS07-008	HTML Help ActiveX Control Vulnerability CVE-2007-0214 Critical Discovered By: HD Moore of BreakingPoint Systems Public: No Exploited: No
MS07-009	Microsoft Windows MDAC ActiveX Vulnerability CVE-2006-5559 Critical Discovered By: FrSIRT Public: Yes Exploited: No
MS07-010	Microsoft Malware Protection Engine Vulnerability CVE-2006-5270 Critical Discovered By: Neel Mehta and Alex Wheeler of ISS X-Force Public: No Exploited: No
MS07-011	OLE Dialog Memory Corruption Vulnerability CVE-2007-0026 Important Discovered By: Kostya Kortchinsky of Immunity, Inc. Fabrice Desclaux from EADS Common Research Center Public: No Exploited: No
MS07-012	MFC Memory Corruption Vulnerability CVE-2007-0025 Important Discovered By: Kostya Kortchinsky of Immunity, Inc. Fabrice Desclaux from EADS Common Research Center Public: No Exploited: No
MS07-013	Microsoft RichEdit Vulnerability CVE-2006-1311 Important Discovered By: Kostya Kortchinsky of Immunity, Inc. Fabrice Desclaux from EADS Common Research Center Public: No Exploited: No
MS07-014	Word Malformed String Vulnerability CVE-2006-5994 Critical Discovered By: Shih-hao Weng of Information and Communication Security Technology Center Public: Yes Exploited: Yes
MS07-014	Word Malformed Data Structures Vulnerability CVE-2006-6456 Critical Discovered By: Shih-hao Weng of Information and Communication Security Technology Center Public: Yes Exploited: Yes
MS07-014	Word Count Vulnerability CVE-2006-6561 Critical Public: Yes Exploited: Yes
MS07-014	Word Macro Vulnerability CVE-2007-0208 Important Discovered By: USAA Public: No Exploited: No
MS07-014	Word Malformed Drawing Object Vulnerability CVE-2007-0209 Critical Public: No Exploited: No
MS07-014	Word Malformed Function Vulnerability CVE-CVE-2007-0515 Critical Public: Yes Exploited: Yes
MS07-015	PowerPoint Malformed Record Memory Corruption Vulnerability CVE-2006-3877 Critical Discovered By: Chris Ries of VigilantMinds Inc. Public: No Exploited: No
MS07-015	Excel Malformed Record Vulnerability CVE-2007-0671 Critical Public: Yes Exploited: Yes Advisory:
MS07-016	COM Object Instantiation Memory Corruption Vulnerability CVE-2006-4697 Critical Public: Yes Exploited: No Advisory:
MS07-016	COM Object Instantiation Memory Corruption Vulnerability CVE-2007-0219 Critical Discovered By: H D Moore of BreakingPoint Systems Public: No Exploited: No Advisory:
MS07-016	FTP Server Response Parsing Memory Corruption Vulnerability CVE-2007-0217 Critical Discovered By: iDefense Public: No Exploited: No Advisory: iDefense

Posted 02-14-2007 12:32 AM by erik.peterson

Syndication

Recent Posts

Archives