SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#989932

Microsoft contains a buffer overflow in the Local Troubleshooter ActiveX control (Tshoot.ocx)

Overview

Microsoft Windows ships with a troubleshooting application to assist users with problems. A vulnerability in this application may permit a remote attacker to execute arbitrary code with the privileges of the current user.

I. Description

Microsoft Windows 2000 ships with an ActiveX control (Tshoot.ocx) that is a troubleshooting application to assist users with various system problems. A buffer overflow vulnerability exists in this control that may permit a remote attacker to execute arbitrary code with the privileges of the current user. Since this control is marked Safe for Scripting, a remote attacker who could trick the victim into viewing a crafted HTML web site, or HTML-based email message may be able to exploit this vulnerability.

It should be noted that the Microsoft Local Troubleshooter ActiveX control is installed as a default part of the operating system on Windows 2000.

II. Impact

Exploitation of this vulnerability could lead to the arbitrary execution of code with the privileges of the current user.

III. Solution

Microsoft has released patches in MS03-042 and Knowledgebase Article 826232 to address this issue. Apply the patches as appropriate.


According to the Microsoft Advisory, Microsoft Windows 2000 with Service Pack 2, Service Pack 3 or Service Pack 4 are vulnerable to this issue. Windows NT 4.0, NT Server 4.0, Terminal Server Edition , Windows XP, Windows Millennium Edition and Windows Server 2003 are not affected by this issue.

Systems Affected

VendorStatusDate NotifiedDate Updated
Microsoft CorporationVulnerable16-Oct-2003

References


http://www.microsoft.com/technet/security/bulletin/MS03-042.asp
http://support.microsoft.com/?kbid=826232

Credit

This vulnerability was reported in a Microsoft Security Bulletin.

This document was written by Jason A Rafail and is based on MS03-042.

Other Information

Date Public:2003-10-15
Date First Published:2003-10-16
Date Last Updated:2003-10-16
CERT Advisory: 
CVE-ID(s):CAN-2003-0661
NVD-ID(s):CAN-2003-0661
US-CERT Technical Alerts: 
Metric:25.31
Document Revision:7

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2003 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader