Microsoft Black Tuesday - May 2007

Michael Sutton's Blog

Home
Contact

Syndication

Archives

The break that we were given in April when only 8 vulnerabilities were delivered is now a long lost memory. While May was not a record month, it was big with 18 overall vulnerabilities in seven advisories. More importantly, the vulnerabilities were strongly skewed toward critical with 14 of 18 reports receiving the top severity ranking. As always, while it's refreshing to get such a large bundle out of the way, don't relax just yet. Instead, take a quick look at upcoming advisories for 3Com's Zero Day Initiative or eEye Research and you'll see that they still collectively have more than a dozen unpatched Microsoft vulnerabilities despite the fact that two TippingPoint issues were addressed this month.

The 18 total vulnerabilities had the following overall severity rankings.

14 Critical
4 Important

This month's bulletins included patches for three public vulnerabilities.

MS07-024 (CVE-2007-0870) Word Document Stream Vulnerability
MS07-027 (CVE-2007-0942) COM Object Instantiation Memory Corruption Vulnerability
MS07-029 (CVE-2007-1748) DNS RPC Management Vulnerability

Most importantly, the zero-day Windows DNS RPC vulnerability was addressed. This was important as Microsoft had acknowledged targeted exploitation of this issue nearly a month ago.

Below is a cheat sheet for all 18 vulnerabilities.

Enjoy!

- michael

Bulletin	Title
MS07-023	Excel BIFF Record Vulnerability CVE-2007-0215 Critical Discovered By: Manuel Santamarina Suarez, working with TippingPoint Public: No Exploited: No Advisory: TippingPoint
MS07-023	Excel Set Font Vulnerability CVE-2007-1203 Critical Public: No Exploited: No
MS07-023	Excel Filter Record Vulnerability CVE-2007-1214 Critical Discovered By: Greg MacManus of iDefense Labs Public: No Exploited: No Advisory: iDefense Labs
MS07-024	Word Array Overflow Vulnerability CVE-2007-0035 Critical Public: No Exploited: No
MS07-024	Word Document Stream Vulnerability CVE-2007-0870 Critical Discovered By: Craig Schmugar of McAfee Avert Labs Andreas Marx of AV-Test Public: Yes Exploited: Yes
MS07-024	Word RTF Parsing Vulnerability CVE-2007-1202 Critical Discovered By: iDefense Labs Public: No Exploited: No Advisory: iDefense Labs
MS07-025	Drawing Object Vulnerability CVE-2007-1747 Critical Public: No Exploited: No
MS07-026	Outlook Web Access Script Injection Vulnerability CVE-2007-0220 Important Discovered By: Martijn Brinkers of Izecom Public: No Exploited: No Advisory:
MS07-026	Malformed iCal Vulnerability CVE-2007-0039 Important Discovered By: Alexander Sotirov of Determina Security Research Public: No Exploited: No Advisory: Determina Security Research
MS07-026	MIME Decoding Vulnerability CVE-2007-0213 Critical Public: No Exploited: No
MS07-026	IMAP Literal Processing Vulnerability CVE-2007-0221 Important Discovered By: Joxean Koret, working with the iDefense Public: No Exploited: No Advisory: iDefense Labs
MS07-027	COM Object Instantiation Memory Corruption Vulnerability CVE-2007-0942 Critical Discovered By: Public: Yes Exploited: No Advisory:
MS07-027	Uninitialized Memory Corruption Vulnerability CVE-2007-0944 Critical Discovered By: TippingPoint Public: No Exploited: No Advisory: TippingPoint
MS07-027	Property Memory Corruption Vulnerability CVE-2007-0945 Critical Discovered By: Public: No Exploited: No Advisory:
MS07-027	HTML Objects Memory Corruption Vulnerabilities CVE-2007-0946, CVE-2007-0947 Important Discovered By: JJ Reyes of Secunia Research Public: No Exploited: No Advisory:
MS07-027	Arbitrary File Rewrite Vulnerability CVE-2007-2221 Critical Discovered By: cocoruder of Fortinet Security Research Public: No Exploited: No Advisory:
MS07-028	CAPICOM.Certificates Vulnerability CVE-2007-0940 Critical Discovered By: Chris Ries of VigilantMinds Inc. Public: No Exploited: No Advisory:
MS07-029	DNS RPC Management Vulnerability CVE-2007-1748 Critical Discovered By: Mark Hofman of the SANS ISC Handlers Bill O'Malley with the Information Security Office at Carnegie Mellon University Public: Yes Exploited: Yes Advisory:

Posted 05-09-2007 1:05 AM by erik.peterson

Syndication

Recent Posts

Archives