-->

  SecPod ID: 10221                                            Status: Public Report
  Microsoft Internet Explorer 0-day SQL Injection             Severity: High
  Vulnerabilities                                             Release Date: 15-12-2008
                                                              CVSS Base Score: 7.5 (AV:N/AC:L/Au:NR/C:P/I:P/A:P)
                                                              CVSS Temporal Score  = 6.7
                                                              Impact Level:  Application

  Affected Software/OS/Device:
  - Windows Platform with Internet Explorer version 8.0 Beta 2

  OpenVAS Plugin ID: 
  Snort Signature ID:
  OVAL ID: 

  Vulnerability Insight:

  Overview:
  Internet Explorer is prone to SQL Injection Vulnerabilities.

  Description:
  This flaw is due to some SQL Injection filteration bugs inside the existing
  Microsoft Internet Explorer application.

  Impact:
  Successful exploitation will let the attacker execute arbitrary codes in the
  context of the application and can perform the mass sql injection attacks to
  the remote hosts.

  CVSS Score Report:
      ACCESS_VECTOR = NETWORK
      ACCESS_COMPLEXITY = LOW
      AUTHENTICATION = NOT_REQUIRED
      CONFIDENTIALITY_IMPACT = PARTIAL
      INTEGRITY_IMPACT = PARTIAL
      AVAILABILITY_IMPACT = PARTIAL
      EXPLOITABILITY = PROOF_OF_CONCEPT
      REMEDIATION_LEVEL = UNAVAILABLE
      REPORT_CONFIDENCE = CONFIRMED
      CVSS Base Score = 7.5 (AV:N/AC:L/Au:NR/C:P/I:P/A:P)
      CVSS Temporal Score = 6.7
      Risk factor = High

  Workaround:
  Refer the instructions given by Microsoft to get protection from this attack,
  http://www.microsoft.com/technet/security/advisory/961051.mspx

  Fix:
  Solution/Patch not available as on 15th December 2008.
  
  References: 
  http://isc.sans.org/diary.html?storyid=5464

  http://www.microsoft.com/technet/security/advisory/961051.mspx

Home          Corporate          Resources          Report Security Bug          Diary