Posts

Microsoft Security Bulletin Coverage (Dec 10, 2013)

/in /by

Dell SonicWALL has analyzed and addressed Microsoft’s security advisories for the month of December, 2013. A list of issues reported, along with Dell SonicWALL coverage information follows:

MS13-096 Vulnerability in Microsoft Graphics Component Could allow Remote Code Execution (2908005)

  • CVE-2013-3906 Microsoft Graphics Component Memory Corruption Vulnerability
    GAV: 26249 Malformed.docx.MP.1
    GAV: 26255 Malformed.tif.MP.3
    GAV: 26278 Malformed.docx.MP.2
    GAV: 26311 CVE-2013-3906

MS13-097 Cumulative Security Update for Internet Explorer (2898785)

  • CVE-2013-5045 Internet Explorer Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-5046 Internet Explorer Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-5047 Internet Explorer Memory Corruption Vulnerability
    IPS: 9372 Windows IE Memory Corruption Vulnerability (MS13-097) 1
  • CVE-2013-5048 Internet Explorer Memory Corruption Vulnerability
    IPS: 9385 Windows IE Memory Corruption Vulnerability (MS13-097) 2
  • CVE-2013-5049 Internet Explorer Memory Corruption Vulnerability
    IPS: 9393 Windows IE Memory Corruption Vulnerability (MS13-097) 3
  • CVE-2013-5051 Internet Explorer Memory Corruption Vulnerability
    IPS: 9420 Windows IE Memory Corruption Vulnerability (MS13-097) 4
  • CVE-2013-5052 Internet Explorer Memory Corruption Vulnerability
    IPS: 9431 Windows IE Memory Corruption Vulnerability (MS13-097) 5

MS13-098 Vulnerability in Windows Could Allow Remote Code Execution (2893294)

  • CVE-2013-3900 WinVerifyTrust Signature Validation Vulnerability
    IPS: 4773 Suspicious HTTP Authorization Header 6
    SPY: 4706 IsFreemium

MS13-099 Vulnerability in Microsoft Scripting Runtime Object Library Could Allow Remote Code Execution (2909158)

  • CVE-2013-5056 Use-After-Free Vulnerability in Microsoft Scripting Runtime Object Library
    IPS: 9436 Microsoft Scripting Object Use After Free

MS13-105 Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2915705)

  • CVE-2013-1330 MAC Disabled Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-5072 OWA XSS Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-5763 Oracle Outside In Contains Multiple Exploitable Vulnerabilities
    There are no known exploits in the wild.
  • CVE-2013-5791 Oracle Outside In Contains Multiple Exploitable Vulnerabilities
    There are no known exploits in the wild.

MS13-100 Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2904244)

  • CVE-2013-5059 SharePoint Page Content Vulnerabilities
    There are no known exploits in the wild.

MS13-101 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2880430)

  • CVE-2013-3899 Win32k Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3902 Win32k Use After Free Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3903 TrueType Font Parsing Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3907 Port-Class Driver Double Fetch Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-5058 Win32k Integer Overflow Vulnerability
    There are no known exploits in the wild.

MS13-102 Vulnerability in LRPC Client Could Allow Elevation of Privilege (2898715)

  • CVE-2013-3878 LRPC Client Buffer Overrun Vulnerability
    There are no known exploits in the wild.

MS13-103 Vulnerability in ASP.NET SignalR Could Allow Elevation of Privilege (2905244)

  • CVE-2013-5042 SignalR XSS Vulnerability
    There are no known exploits in the wild.

MS13-104 Vulnerability in Microsoft Office Could Allow Information Disclosure (2909976)

  • CVE-2013-5054 Token Hijacking Vulnerability
    There are no known exploits in the wild.

MS13-106 Vulnerability in a Microsoft Office Shared Component Could Allow Security Feature Bypass (2905238)

  • CVE-2013-5057 HXDS ASLR Vulnerability
    There are no known exploits in the wild.

Microsoft Security Bulletin Coverage (Sept 10, 2013)

/in /by

Dell SonicWALL has analyzed and addressed Microsoft’s security advisories for the month of September, 2013. A list of issues reported, along with Dell SonicWALL coverage information follows:

MS13-067 Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2834052)

  • CVE-2013-3858 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3857 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3849 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3848 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3847 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3180 POST XSS Vulnerability
    IPS: 6128 “Cross-Site Scripting (XSS) Attack 44”
  • CVE-2013-3179 SharePoint XSS Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-1330 MAC Disabled Vulnerability
    IPS: 6103 “Microsoft SharePoint Server Remote Code Execution 3”
  • CVE-2013-1315 Microsoft Office Memory Corruption Vulnerability
    SPY: 4678 “Malformed-File xlw.MP.1”
  • CVE-2013-0081 SharePoint Denial of Service Vulnerability
    IPS: 6100 “Microsoft SharePoint Server Remote Code Execution 5 (MS13-067)”

    IPS: 6096 “Microsoft SharePoint Server Remote Code Execution 4 (MS13-067)”

MS13-068 Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2756473)

  • CVE-2013-3870 Message Certificate Vulnerability
    There are no known exploits in the wild.

MS13-069 Cumulative Security Update for Internet Explorer (2870699)

  • CVE-2013-3845 Internet Explorer Memory Corruption Vulnerability
    IPS: 7258 “Windows IE Use-After-Free Vulnerability (MS13-069) 1”
  • CVE-2013-3209 Internet Explorer Memory Corruption Vulnerability
    IPS: 7278 “Windows IE Use-After-Free Vulnerability (MS13-069) 3”
  • CVE-2013-3208 Internet Explorer Memory Corruption Vulnerability
    IPS: 7282 “Windows IE Use-After-Free Vulnerability (MS13-069) 4”
  • CVE-2013-3207 Internet Explorer Memory Corruption Vulnerability
    IPS: 7287 “Windows IE Use-After-Free Vulnerability (MS13-069) 5”
  • CVE-2013-3206 Internet Explorer Memory Corruption Vulnerability
    IPS: 7295 “Windows IE Use-After-Free Vulnerability (MS13-069) 6”
  • CVE-2013-3205 Internet Explorer Memory Corruption Vulnerability
    IPS: 7323 “Windows IE Use-After-Free Vulnerability (MS13-069) 8”
  • CVE-2013-3204 Internet Explorer Memory Corruption Vulnerability
    IPS: 7313 “Windows IE Use-After-Free Vulnerability (MS13-069) 7”
  • CVE-2013-3203 Internet Explorer Memory Corruption Vulnerability
    IPS: 7339 “Windows IE Type Confusion Vulnerability (MS13-069)”
  • CVE-2013-3202 Internet Explorer Memory Corruption Vulnerability
    IPS: 7273 “Windows IE Use-After-Free Vulnerability (MS13-069) 2”
  • CVE-2013-3201 Internet Explorer Memory Corruption Vulnerability
    There are no known exploits in the wild.

MS13-070 Vulnerability in OLE Could Allow Remote Code Execution (2876217)

  • CVE-2013-3863 OLE Property Vulnerability
    There are no known exploits in the wild.

MS13-071 Vulnerability in Windows Theme File Could Allow Remote Code Execution (2864063)

  • CVE-2013-0810 Windows Theme File Remote Code Execution Vulnerability
    IPS: 6130 “Malformed Theme File”

MS13-072 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2845537)

  • CVE-2013-3858 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3857 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3856 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3855 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3854 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3853 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3852 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3851 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3850 Word Memory Corruption Vulnerability
    IPS: 6105 “Microsoft Word Memory Corruption Vulnerability (MS13-072) 1”
  • CVE-2013-3849 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3848 Word Memory Corruption Vulnerability
    IPS: 6109 “Microsoft Word Memory Corruption Vulnerability (MS13-072) 2”
  • CVE-2013-3847 Word Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3160 XML External Entities Resolution Vulnerability
    There are no known exploits in the wild.

MS13-073 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2858300)

  • CVE-2013-3159 XML External Entities Resolution Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3158 Microsoft Office Memory Corruption Vulnerability
    SPY: 4679 “Malformed-File xlw.MP.2”
  • CVE-2013-1315 Microsoft Office Memory Corruption Vulnerability
    There are no known exploits in the wild.

MS13-074 Vulnerabilities in Microsoft Access Could Allow Remote Code Execution (2848637)

  • CVE-2013-3157 Access Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3156 Access File Format Memory Corruption Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3155 Access Memory Corruption Vulnerability
    There are no known exploits in the wild.

MS13-075 Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege (2878687)

  • CVE-2013-3859 Chinese IME Vulnerability
    There are no known exploits in the wild.

MS13-076 Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation of Privilege (2876315)

  • CVE-2013-3866 Win32k Elevation of Privilege Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3865 Win32k Multiple Fetch Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-3864 Win32k Multiple Fetch Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-1344 Win32k Multiple Fetch Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-1343 Win32k Multiple Fetch Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-1342 Win32k Multiple Fetch Vulnerability
    There are no known exploits in the wild.
  • CVE-2013-1341 Win32k Multiple Fetch Vulnerability
    There are no known exploits in the wild.

MS13-077 Vulnerability in Windows Service Control Manager Could Allow Elevation of Privilege (2872339)

  • CVE-2013-3862 Service Control Manager Double Free Vulnerability
    There are no known exploits in the wild.

MS13-078 Vulnerability in FrontPage Could Allow Information Disclosure (2825621)

  • CVE-2013-3137 XML Disclosure Vulnerability
    IPS: 6162 “Microsoft FrontPage Information Disclosure”

MS13-079 Vulnerability in Active Directory Could Allow Denial of Service (2853587)

  • CVE-2013-3868 Remote Anonymous DoS Vulnerability
    There are no known exploits in the wild.