MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight (2681578)

This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host is affected by multiple vulnerabilities.

Description :

The remote Windows host is potentially affected by the following
vulnerabilities :

- Multiple code execution vulnerabilities exist in the
handling of specially crafted TrueType font files.
(CVE-2011-3402, CVE-2012-0159)

- A code execution vulnerability exists in Microsoft .NET
Framework that can allow a specially crafted Microsoft
.NET Framework application to access memory in an unsafe
manner. (CVE-2012-0162)

- A denial of service vulnerability exists in the way that
.NET Framework compares the value of an index.
(CVE-2012-0164)

- A code execution vulnerability exists in the way that
GDI+ handles validation of specially crafted EMF images.
(CVE-2012-0165)

- A code execution vulnerability exists in the way that
the Office GDI+ library handles validation of specially
crafted EMF images embedded within an Office document.
(CVE-2012-0167)

- A code execution vulnerability exists in Microsoft
Silverlight that can allow a specially crafted
Silverlight application to access memory in an unsafe
manner. (CVE-2012-0176)

- A privilege escalation vulnerability exists in the
way that the Windows kernel-mode driver manages the
functions related to Windows and Messages handling.
(CVE-2012-0180)

- A privilege escalation vulnerability exists in the way
that the Windows kernel-mode driver manages Keyboard
Layout files. (CVE-2012-0181)

- An unspecified privilege escalation vulnerability exists
in the Windows kernel-mode driver. (CVE-2012-1848)

See also :

http://www.zerodayinitiative.com/advisories/ZDI-12-131
http://archives.neohapsis.com/archives/fulldisclosure/2012-08/0060.html
http://technet.microsoft.com/en-us/security/bulletin/ms12-034

Solution :

Microsoft has released a set of patches for Windows XP, 2003, Vista,
2008, 7, 2008 R2, Office 2003, 2007, and 2010, .NET Framework 3.0,
3.5.1, and 4.0, Silverlight 4, and 5.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.7
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true