SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips
 

Vulnerability Note VU#723537

Microsoft SmartHTML interpreter (shtml.dll) contains vulnerability

Overview

Microsoft's SmartHTML interpreter (shtml.dll) contains a remotely exploitable vulnerability.

I. Description

shtml.dll is a component of FrontPage Server Extensions. FrontPage Server Extensions allow web developers to add or change content and to manage the web server.

Quoting from MS02-053, "The SmartHTML interpreter, shtml.dll, is part of FPSE, and supports certain types of dynamic web content. For instance, using SmartHTML, a web developer can build a web page that relies on FrontPage features, but not actually have those features embedded within the page until a user requests it."

A remotely exploitable vulnerability in shtml.dll can allow a remote attacker to disrupt the normal operation of the web server or execute arbitrary code with system privileges. For more details, please see the "Impact" section of this document.

II. Impact

There are varying impacts depending on the version of FrontPage Server Extensions running on the vulnerable host. If a user is running FrontPage Server Extensions 2000, an attacker can cause denial-of-service conditions on the web server (cause the web server to become unavailable). If a user is running FrontPage Server Extensions 2002, a remote attacker can execute arbitrary code with system privileges on the web server.

III. Solution

Apply a patch.

Systems Affected

VendorStatusDate Updated
Microsoft CorporationVulnerable2-Oct-2002

References


http://www.microsoft.com/technet/security/bulletin/MS02-053.asp
http://lists.netsys.com/pipermail/full-disclosure/2002-September/002252.html
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnservext/html/fpovrw.asp

Credit

Maninder Bharadwaj of Digital Defense Services, part of Digital GlobalSoft Ltd., is credited with discovering this vulnerability.

This document was written by Ian A Finlay. It is based on information provided by Microsoft.

Other Information

Date Public09/25/2002
Date First Published10/02/2002 02:01:31 PM
Date Last Updated10/04/2002
CERT Advisory 
CVE NameCAN-2002-0692
US-CERT Technical Alerts 
Metric10.35
Document Revision24

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2002 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader