CVE-2008-1448

medium

Description

The MHTML protocol handler in a component of Microsoft Outlook Express 5.5 SP2 and 6 through SP1, and Windows Mail, does not assign the correct Internet Explorer Security Zone to UNC share pathnames, which allows remote attackers to bypass intended access restrictions and read arbitrary files via an mhtml: URI in conjunction with a redirection, aka "URL Parsing Cross-Domain Information Disclosure Vulnerability."

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5886

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-048

http://www.vupen.com/english/advisories/2008/2352

http://www.us-cert.gov/cas/techalerts/TA08-225A.html

http://www.securitytracker.com/id?1020680

http://www.securitytracker.com/id?1020679

http://www.securityfocus.com/bid/30585

http://www.securityfocus.com/archive/1/495458/100/0/threaded

http://www.coresecurity.com/content/internet-explorer-zone-elevation

http://secunia.com/advisories/31415

http://marc.info/?l=bugtraq&m=121915960406986&w=2

Details

Source: Mitre, NVD

Published: 2008-08-13

Updated: 2018-10-12

Risk Information

CVSS v2

Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:N/A:N

Severity: High

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Severity: Medium