MS12-058: Vulnerabilities in Microsoft Exchange Server WebReady Document Viewing Could Allow Remote Code Execution (2740358)

Medium Nessus Plugin ID 61533


The remote mail server has multiple code execution vulnerabilities.


The version of Microsoft Exchange running on the remote host is using a vulnerable set of the Oracle Outside In libraries. These libraries are used by the WebReady Document Viewing feature to display certain kinds of attachments viewed via Outlook Web App (OWA). An attacker could exploit this by sending a malicious email attachment to a user who views it in OWA, resulting in arbitrary code execution as LocalService.


Microsoft has released a set of patches for Exchange 2007 and 2010.

See Also

Plugin Details

Severity: Medium

ID: 61533

File Name: smb_nt_ms12-058.nasl

Version: $Revision: 1.19 $

Type: local

Agent: windows

Published: 2012/08/15

Modified: 2017/07/26

Dependencies: 13855, 57033

Risk Information

Risk Factor: Medium


Base Score: 6.8

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:exchange_server

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/08/14

Vulnerability Publication Date: 2012/07/17

Exploitable With

ExploitHub (EH-12-497)

Reference Information

CVE: CVE-2012-1766, CVE-2012-1767, CVE-2012-1768, CVE-2012-1769, CVE-2012-1770, CVE-2012-1771, CVE-2012-1772, CVE-2012-1773, CVE-2012-3106, CVE-2012-3107, CVE-2012-3108, CVE-2012-3109, CVE-2012-3110

BID: 54497, 54500, 54504, 54506, 54511, 54531, 54536, 54541, 54543, 54546, 54548, 54550, 54554

OSVDB: 83900, 83901, 83902, 83903, 83904, 83905, 83906, 83907, 83908, 83909, 83910, 83911, 83913, 83944

CERT: 118913

MSFT: MS12-058

Secunia: 49936

MSKB: 2706690, 2734323, 2743248