Summary
XMLHTTP Control Can Allow Access to Local Files.
A flaw exists in how the XMLHTTP control applies IE security zone settings to a redirected data stream returned in response to a request for data from a web site. A vulnerability results because an attacker could seek to exploit this flaw and specify a data source that is on the user's local system. The attacker could then use this to return information from the local system to the attacker's web site.
Impact of vulnerability: Attacker can read files on client system.
Affected Software:
Microsoft XML Core Services versions 2.6, 3.0, and 4.0.
An affected version of Microsoft XML Core Services also ships as part of the following products:
Microsoft Windows XP
Microsoft Internet Explorer 6.0
Microsoft SQL Server 2000
(note: versions earlier than 2.6 are not affected
files affected include msxml[2-4].dll and are found in the system32 directory. This might be false
positive if you have earlier version)
See http://www.microsoft.com/technet/security/bulletin/ms02-008.mspx
Severity
Classification
-
CVE CVE-2002-0057 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Flaw in Certificate Enrollment Control (Q323172)
- Active Directory Certificate Services Web Enrollment Elevation of Privilege Vulnerability (2518295)
- Microsoft Office Shared Component Security Bypass Vulnerability (2905238)
- Microsoft Lync Server Information Disclosure Vulnerability (2969258)
- Exchange 2000 Exhaust CPU Resources (Q320436)