We’ve already had one mini patch day from Microsoft this month, and today is the official scheduled patch day. We have the releases and there are five patches for today. 

The first of the advisories today is for MS07-018, this advisory covers a remote execution vulnerability within Microsoft Content Management Server (MCMS) and a remote cross site scripting vulnerability. The remote code execution vulnerability stems from the way MCMS handles certain characters within HTTP requests that could result in a memory corruption issue. This issue can be easily triggered by a specially crafted HTTP GET request. The cross site scripting issue could be used by an attacker to run arbitrary scripting in the context of the user.

Next up is MS07-019, this covers a remote execution vulnerability within UPnP and it’s handling of malformed HTTP requests. The issue can be triggered by a malformed HTTP request, upon successful exploitation it can allow execution of code on the affected computer. This flaw has limited exposure as the vulnerability is limited to local network. The issues in MS07-019 only affect Windows XP SP2 and Windows XP x64 Edition.

Then we have MS07-020, this covers a remote code execution vulnerability within Microsoft Agent. It stems from the way the Microsoft Agent ActiveX control processes malformed URLs, which could result in memory corruption. This vulnerability can be exploited through a specially crafted web page. This issue affects Windows 2000 SP4, Windows XP SP2, Windows 2003, 64-bit versions of Windows 2003 and Window XP x64. Windows Vista is not affected by this issue.

MS07-021 covers a remote code execution vulnerability within the Windows Client/Server Run-time Subsystem (CSRSS) because of the way it handles error messages. The issue can be triggered through a browser, but it would require significant user interaction. CSRSS also contains a privilege escalation vulnerability as a result of how the subsystem handles connection during process initialization and termination. This issue affects all versions of Windows including Windows Vista.

Finally MS07-022 covers a Windows Kernel privilege escalation vulnerability, which is due to incorrect permissions on a mapped memory segment. Valid user credentials are required in order to exploit this issue on an affected system, however successful exploitation will result in execution of code with increased privileges. This final issue only affects 32-bit versions of Windows 2000 SP4, Windows XP SP2 and Windows 2003.

Microsoft have rated MS07-018, MS07-019, MS07-020 and MS07-021 as critical vulnerabilities. Microsoft have rated MS07-022 as Important. We have some interesting vulnerabilities in Patch Day Part Two, so it is highly recommended that everything is patched quickly as the malware authors will be pumping out some nasties in a few days.

Add this page to your favorite Social Bookmarking websites