kayodeok's Weblog

Tuesday 08 June 2004

MS Security Bulletins - 08 June 2004

Two MS Security Bulletins issued today.

Microsoft Security Bulletin MS04-016

Vulnerability in DirectPlay Could Allow Denial of Service

This update resolves a newly-discovered, privately reported vulnerability. A denial of service vulnerability exists in the implementation of the IDirectPlay4 application programming interface (API) of Microsoft DirectPlay because of a lack of robust packet validation.

References:

• Technical: Vulnerability in DirectPlay Could Allow Denial of Service (839643)
• Knowledgebase: MS04-016: Vulnerability in DirectPlay could allow denial of service
• Secunia: Microsoft DirectPlay Packet Validation Denial of Service Vulnerability

Microsoft Security Bulletin MS04-017

Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service

This update resolves a newly-discovered vulnerability in Crystal Reports and Crystal Enterprise from Business Objects. Microsoft Visual Studio .NET 2003 (all versions) and Outlook 2003 with Business Contact Manager redistribute Crystal Reports and are therefore affected by the vulnerability. Microsoft Business Solutions CRM 1.2 redistributes Crystal Enterprise, which is affected in the same way.

An attacker who successfully exploited the vulnerability could retrieve and delete files through the Crystal Reports and Crystal Enterprise Web viewers on an affected system. The number of files of files that are impacted by this vulnerability would depend on the security context of the affected component that is used by the Crystal Web viewer.

Systems can only be vulnerable if they have Internet Information Services (IIS) installed.

References:

• Technical: Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service (842689)
• Knowledgebase: MS04-017: Vulnerability in Crystal Reports Web viewer could permit information disclosure and denial of service
• Secunia: Crystal Reports and Crystal Enterprise Directory Traversal Vulnerability
• Secunia: Microsoft Crystal Reports Web Viewer Directory Traversal Vulnerability

Related News

• Internet Explorer Local Resource Access and Cross-Zone Scripting Vulnerabilities

  Two vulnerabilities have been reported in Internet Explorer, which in combination with other known issues can be exploited by malicious people to compromise a user's system.

  1. A variant of the "Location:" local resource access vulnerability can be exploited via a specially crafted URL in the "Location:" HTTP header to open local files.
  2. A cross-zone scripting error can be exploited to execute files in the "Local Machine" security zone.

  Secunia has confirmed the vulnerabilities in a fully patched system with Internet Explorer 6.0. It has been reported that the preliminary SP2 prevents exploitation by denying access.

• New Virus Erases Hard Drive

  VBS.Pub is a VBScript file-infecting and mass-mailing worm. VBS.Pub infects the files that have the .asp, .hta, .htm, .htt, .html, .vbe, and .vbs. file extensions.

  The worm also uses Microsoft Outlook to send itself to everyone in the Microsoft Outlook Address Book.

  If the day is the 6th, 13th, 21st, or 28th, the worm will delete all the files from the computer.

• Intrusion-prevention start-up touts 'memory firewall'
• CPU-based security for Windows XP, Red Hat Linux coming

Related Tools

• Microsoft Baseline Security Analyzer (MBSA)
• Internet Information Services (IIS) Lockdown
• Software Update Services (SUS)
• Windows Update
• Microsoft Security Tools

Related Entries

• MS Security Bulletins - 11 May
• MS Security Bulletins - 13 April
• MS Security Bulletins - 9 March
• MS Security Bulletins - 10 February
• MS04-004: Cumulative Security Update for Internet Explorer
• MS Security Bulletins - 13 January
• MS Security Bulletins - 9 December
• MS Security Bulletins - 11 November
• MS Security Bulletins - 15 October