9.3

CVE-2007-3896

The URL handling in Shell32.dll in the Windows shell in Microsoft Windows XP and Server 2003, with Internet Explorer 7 installed, allows remote attackers to execute arbitrary programs via invalid "%" sequences in a mailto: or other URI handler, as demonstrated using mIRC, Outlook, Firefox, Adobe Reader, Skype, and other applications. NOTE: this issue might be related to other issues involving URL handlers in Windows systems, such as CVE-2007-3845. There also might be separate but closely related issues in the applications that are invoked by the handlers.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftInternet Explorer Version7.0
   MicrosoftWindows 2003 Server Editionitanium
   MicrosoftWindows 2003 Server Editionx64
   MicrosoftWindows 2003 Server Updatesp1
   MicrosoftWindows 2003 Server Updatesp2
   MicrosoftWindows 2003 Server Updatesp2 Editionitanium
   MicrosoftWindows 2003 Server Updatesp2 Editionx64
   MicrosoftWindows Xp Editionx64
   MicrosoftWindows Xp Updatesp2
   MicrosoftWindows Xp Updatesp2 Editionx64
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 53.83% 0.989
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://xs-sniper.com/blog/remote-command-exec-firefox-2005/
http://blogs.zdnet.com/security/?p=577
http://marc.info/?l=bugtraq&m=119143780202107&w=2
http://marc.info/?l=bugtraq&m=119144449915918&w=2
http://marc.info/?l=bugtraq&m=119159924712561&w=2
http://marc.info/?l=bugtraq&m=119168062128026&w=2
http://marc.info/?l=bugtraq&m=119194714125580&w=2
http://marc.info/?l=bugtraq&m=119195904813505&w=2
http://marc.info/?l=full-disclosure&m=119159477404263&w=2
http://marc.info/?l=full-disclosure&m=119168727402084&w=2
http://marc.info/?l=full-disclosure&m=119170531020020&w=2
http://marc.info/?l=full-disclosure&m=119171444628628&w=2
http://marc.info/?l=full-disclosure&m=119175323322021&w=2
http://marc.info/?l=full-disclosure&m=119180333805950&w=2
http://secunia.com/advisories/26201
Vendor Advisory
http://securitytracker.com/id?1018831
http://www.heise-security.co.uk/news/96982
http://www.kb.cert.org/vuls/id/403150
US Government Resource
http://www.microsoft.com/technet/security/advisory/943521.mspx
http://www.securityfocus.com/archive/1/481493/100/100/threaded
http://www.securityfocus.com/archive/1/481505/100/0/threaded
http://www.securityfocus.com/archive/1/481624/100/0/threaded
http://www.securityfocus.com/archive/1/481664/100/0/threaded
http://www.securityfocus.com/archive/1/481671/100/0/threaded
http://www.securityfocus.com/archive/1/481680/100/0/threaded
http://www.securityfocus.com/archive/1/481839/100/0/threaded
http://www.securityfocus.com/archive/1/481846/100/0/threaded
http://www.securityfocus.com/archive/1/481867/100/0/threaded
http://www.securityfocus.com/archive/1/481871/100/0/threaded
http://www.securityfocus.com/archive/1/481881/100/0/threaded
http://www.securityfocus.com/archive/1/481887/100/0/threaded
http://www.securityfocus.com/archive/1/482090/100/0/threaded
http://www.securityfocus.com/archive/1/482292/100/0/threaded
http://www.securityfocus.com/archive/1/482437/100/0/threaded
http://www.securityfocus.com/archive/1/484186/100/0/threaded
http://www.securityfocus.com/bid/25945
http://www.securitytracker.com/id?1018822
http://www.us-cert.gov/cas/techalerts/TA07-317A.html
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-061
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4581