SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Microsoft JScript Vendors:   Microsoft
Microsoft JScript Scripting Engine Memory Corruption Error Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1022842
SecurityTracker URL:  http://securitytracker.com/id/1022842
CVE Reference:   CVE-2009-1920   (Links to External Site)
Updated:  Nov 11 2009
Original Entry Date:  Sep 8 2009
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 5.1, 5.6, 5.7, 5.8
Description:   A vulnerability was reported in Microsoft JScript. A remote user can cause arbitrary code to be executed on the target user's system.

A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a memory corruption error in 'JScript.dll' and execute arbitrary code on the target system. The code will run with the privileges of the target user.

Windows Server 2008 R2 is not affected.

The vendor was notified on April 28, 2009.

Ling and Wushi of team509 reported this vulnerability via TippingPoint.

Impact:   A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution:   The vendor has issued the following fixes:

Microsoft Windows 2000 Service Pack 4, JScript 5.1 and JScript 5.6:

http://www.microsoft.com/downloads/details.aspx?familyid=2bb3af8d-f36c-4497-9f48-fc59bcff2583

Microsoft Windows 2000 Service Pack 4, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=b2773db5-b17d-4b98-b4e2-219b23854abd

Windows XP Service Pack 2, JScript 5.6:

http://www.microsoft.com/downloads/details.aspx?familyid=0af373b2-2240-4079-a748-a38d1bc06f39

Windows XP Service Pack 2, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=c933377d-e0bc-4334-bc75-029045d7a62a

Windows XP Service Pack 3, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=c933377d-e0bc-4334-bc75-029045d7a62a

Windows XP Service Pack 2 and Windows XP Service Pack 3, JScript 5.8:

http://www.microsoft.com/downloads/details.aspx?familyid=992602d8-d857-41cf-b7b1-527afdc1dc0f

Windows XP Professional x64 Edition Service Pack 2, JScript 5.6:

http://www.microsoft.com/downloads/details.aspx?familyid=0d671004-da4e-4dbd-a066-861b53b0c59c

Windows Server 2003 Service Pack 2, JScript 5.6:

http://www.microsoft.com/downloads/details.aspx?familyid=6acc9d2d-b71f-4b5c-9aea-b217b6ae240b

Windows Server 2003 x64 Edition Service Pack 2, JScript 5.6:

http://www.microsoft.com/downloads/details.aspx?familyid=d0de3ab1-73e9-4a09-841f-81ade41a8c81

Windows Server 2003 with SP2 for Itanium-based Systems, JScript 5.6:

http://www.microsoft.com/downloads/details.aspx?familyid=e78cf021-54f5-4526-b5f0-f781aebf9d72

Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=bcb12e57-f5d6-4b4e-88ab-13c28137f11a

Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=8b1b76d5-a6b0-4c2f-8768-e55e82c2c118

Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2*, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=df88e6e5-78d3-4fa6-858d-b935d812cada

Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2*, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=f584f8ca-f6b1-4285-a44c-3df5e51e75de

Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2, JScript 5.7:

http://www.microsoft.com/downloads/details.aspx?familyid=b84fca1d-914d-45af-a48c-d9bc5d20c6b7

A restart may be required.

On November 10, 2009, Microsoft reissued their bulletin to add Microsoft Windows 2000 Service Pack 4, JScript 5.7, to the list of affected products.

The Microsoft advisory is available at:

http://www.microsoft.com/technet/security/bulletin/ms09-045.mspx

Vendor URL:  www.microsoft.com/technet/security/bulletin/ms09-045.mspx (Links to External Site)
Cause:   Access control error
Underlying OS:  Windows (2000), Windows (2003), Windows (2008), Windows (Vista), Windows (XP)
Underlying OS Comments:  2000 SP4, 2003 SP2, XP SP3, Vista SP2, 2008 SP2; and prior service packs

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC