Detections
Analytics
MS12-058: Vulnerabilities in Microsoft Exchange Server WebReady Document Viewing Could Allow Remote Code Execution (2740358)
low Nessus Plugin ID 61533
Language:
Synopsis
The remote mail server has multiple code execution vulnerabilities.Description
The version of Microsoft Exchange running on the remote host is using a vulnerable set of the Oracle Outside In libraries. These libraries are used by the WebReady Document Viewing feature to display certain kinds of attachments viewed via Outlook Web App (OWA). An attacker could exploit this by sending a malicious email attachment to a user who views it in OWA, resulting in arbitrary code execution as LocalService.Solution
Microsoft has released a set of patches for Exchange 2007 and 2010.See Also
http://www.nessus.org/u?a339f216
http://www.nessus.org/u?689a4e3d
https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2012/2737111
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2012/ms12-058
Plugin Details
Severity: Low
ID: 61533
File Name: smb_nt_ms12-058.nasl
Version: 1.22
Type: local
Agent: windows
Family: Windows : Microsoft Bulletins
Published: 8/15/2012
Updated: 12/4/2019
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.5
CVSS v2
Risk Factor: Low
Base Score: 2.1
Temporal Score: 1.8
Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P
CVSS Score Source: CVE-2012-3110
Vulnerability Information
CPE: cpe:/a:microsoft:exchange_server
Required KB Items: SMB/MS_Bulletin_Checks/Possible
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/14/2012
Vulnerability Publication Date: 7/17/2012
Exploitable With
ExploitHub (EH-12-497)
Reference Information
CVE: CVE-2012-1766, CVE-2012-1767, CVE-2012-1768, CVE-2012-1769, CVE-2012-1770, CVE-2012-1771, CVE-2012-1772, CVE-2012-1773, CVE-2012-3106, CVE-2012-3107, CVE-2012-3108, CVE-2012-3109, CVE-2012-3110
BID: 54497, 54500, 54504, 54506, 54511, 54531, 54536, 54541, 54543, 54546, 54548, 54550, 54554