TITLE:
Microsoft Office 2003 "mailto:" Automatic
Attachment of
Arbitrary
Files
SECUNIA ADVISORY ID:
SA19819
VERIFY ADVISORY:
http://secunia.c
om/advisories/19819/
CRITICAL:
Not critical
IMPACT:
Manipulation of data, Exposure of sensitive information
WHERE:
From remote
SOFTWARE:
Microsoft Office 2003 Student and Teacher Edition
http://secunia.com/p
roduct/2278/
Microsoft Office 2003 Standard Edition
http://secunia.com/p
roduct/2275/
Microsoft Office 2003 Small Business Edition
http://secunia.com/p
roduct/2277/
Microsoft Office 2003 Professional Edition
http://secunia.com/p
roduct/2276/
DESCRIPTION:
A weakness in Microsoft Office 2003, which can be
exploited by malicious people to disclose sensitive
information.
The weakness is caused due to Microsoft Office Outlook
registering an
unsafe "mailto" URI handler. This can be
exploited to
automatically
attach an arbitrary file to an e-mail by tricking a user
into
following a specially crafted link with the
"mailto:" URI
handler
from a malicious web site.
Example:
mailto:[mail]""..\..\..\..\..\[file]
The weakness has been confirmed on a fully patched system
with
Microsoft Office Outlook 2003 SP1/SP2 and Microsoft Office
2003
Professional Edition. Other versions may also be affected.
SOLUTION:
Validate attachments before sending e-mails after opening
links
with
the "mailto:" URI handler.
============= PCWorks Mailing List =================
Don't see your post? Check our posting guidelines &
make sure you've followed proper posting procedures,
http://pcworkers.com/r
ules.htm
Contact list owner <owner-pcworks imagicomm.com>
Unsubscribing and other changes: http://pcworkers.com
=====================================================
|