[email protected]CVE-2012-4792

HistoryDec 30, 2012 - 6:55 p.m.

CVE-2012-4792

2012-12-3018:55:01

CWE-399

[email protected]

web.nvd.nist.gov

185

cve-2012-4792

microsoft internet explorer

vulnerability

remote code execution

web security

nvd

exploit

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.916 High

EPSS

Percentile

98.9%

JSON

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch6

AND

microsoftwindows_server_2003sp2

microsoftwindows_xpsp3

microsoftwindows_xpMatch-sp2x64

Node

microsoftinternet_explorerMatch7

AND

microsoftwindows_server_2003sp2

microsoftwindows_server_2008sp2x64

microsoftwindows_server_2008sp2x86

microsoftwindows_server_2008Match-sp2itanium

microsoftwindows_vistasp2

microsoftwindows_vistaMatch-sp2

microsoftwindows_xpsp3

microsoftwindows_xpMatch-sp2x64

Node

microsoftinternet_explorerMatch8

AND

microsoftwindows_7Match-

microsoftwindows_7Match-sp1x64

microsoftwindows_7Match-sp1x86

microsoftwindows_server_2003sp2

microsoftwindows_server_2008r2itanium

microsoftwindows_server_2008r2x64

microsoftwindows_server_2008sp2x64

microsoftwindows_server_2008sp2x86

microsoftwindows_vistasp2

microsoftwindows_vistaMatch-sp2

microsoftwindows_xpsp3

microsoftwindows_xpMatch-sp2x64

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq6

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	6

References

blog.fireeye.com/research/2012/12/council-foreign-relations-water-hole-attack-details.html

blogs.technet.com/b/srd/archive/2012/12/29/new-vulnerability-affecting-internet-explorer-8-users.aspx

blogs.technet.com/b/srd/archive/2012/12/31/microsoft-quot-fix-it-quot-available-for-internet-explorer-6-7-and-8.aspx

eromang.zataz.com/2012/12/29/attack-and-ie-0day-informations-used-against-council-on-foreign-relations/

labs.alienvault.com/labs/index.php/2012/just-another-water-hole-campaign-using-an-internet-explorer-0day/

packetstormsecurity.com/files/119168/Microsoft-Internet-Explorer-CDwnBindInfo-Object-Use-After-Free.html

technet.microsoft.com/security/advisory/2794220

www.kb.cert.org/vuls/id/154201

www.us-cert.gov/cas/techalerts/TA13-008A.html

www.us-cert.gov/cas/techalerts/TA13-015A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-008

github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ie_cbutton_uaf.rb

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16361

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.916 High

EPSS

Percentile

98.9%

JSON

Related for CVE-2012-4792

saint4 packetstorm2 seebug1 cvelist1 nessus2 threatpost6 checkpoint_advisories1 securityvulns1 symantec1 nvd1 metasploit1 cert1 openvas2 zdt1 prion1 exploitdb1 thn4