Microsoft Security Bulletins

July 2008

2003 |December |November |October

Microsoft Security Bulletin MS08-037

Severity: Important
Vulnerabilities:

DNS Insufficient Socket Entropy Vulnerability - CVE-2008-1447
A spoofing vulnerability exists in Windows DNS client and Windows DNS server. This vulnerability could allow a remote attacker to quickly and reliably spoof responses and insert records into the DNS server or client cache, thereby redirecting Internet traffic. Visit the attack detection TechNet article for more information of DNS cache poisoning.
DNS Cache Poisoning Vulnerability - CVE-2008-1454
A cache poisoning vulnerability exists in Windows DNS Server. The vulnerability could allow an unauthenticated attacker to send malicious responses to DNS requests made by vulnerable systems, thereby poisoning the DNS cache and redirecting Internet traffic from legitimate locations.

Severity: Important
Vulnerabilities:

Windows Saved Search Vulnerability - CVE-2008-1435
A remote code execution vulnerability exists when saving a specially crafted search file within Windows Explorer. This operation causes Windows Explorer to exit and restart in an exploitable manner.

Severity: Important
Vulnerabilities:

Outlook Web Access for Exchange Server Data Validation Cross-Site Scripting Vulnerability - CVE-2008-2247
This is a cross-site scripting vulnerability in the affected versions of Outlook Web Access for Exchange Server that could lead to elevation of privilege on individual OWA clients connecting to the Outlook Web Access for Exchange Server. An attacker must convince a user to open a specially crafted e-mail from within an individual OWA client that would run a malicious script. If the malicious script is executed, the script would run in the security context of the userís OWA session and perform any action the user could perform such as reading, sending, and deleting e-mail as the logged on user.
Outlook Web Access for Exchange Server HTML Parsing Cross-Site Scripting Vulnerability - CVE-2008-2248
This is a cross-site scripting vulnerability in the affected versions of Outlook Web Access for Exchange Server that could lead to elevation of privilege on individual OWA clients connecting to the Outlook Web Access for Exchange Server. An attacker must convince a user to open a specially crafted e-mail from within an individual OWA client that would run a malicious script. If the malicious script is executed, the script would run in the security context of the userís OWA session and perform any action the user could perform such as reading, sending, and deleting e-mail as the logged on user

Severity: Important
Vulnerabilities:

Memory Page Reuse Vulnerability - CVE-2008-0085
An information disclosure vulnerability exists in the way that SQL Server manages memory page reuse. An attacker with database operator access who successfully exploited this vulnerability could access customer data.
Convert Buffer Overrun - CVE-2008-0086
A vulnerability exists in the convert function in SQL Server that could allow an authenticated attacker to gain elevation of privilege. An attacker who successfully exploited this vulnerability could run code and take complete control of the system.
SQL Server Memory Corruption Vulnerability - CVE-2008-0107
A vulnerability exists in SQL Server that could allow an authenticated attacker to gain elevation of privilege. An attacker who successfully exploited this vulnerability could run code and take complete control of the system.
SQL Buffer Overrun Vulnerability - CVE-2008-0106
A vulnerability exists in SQL Server that could allow an authenticated attacker to gain elevation of privilege. An attacker who successfully exploited this vulnerability could run code and take complete control of the system.