Microsoft XML Core Services CVE-2012-1889 Remote Code Execution Vulnerability

http://www.securityfocus.com/bid/53934

Security Info

Bugtraq ID:	53934
Class:	Unknown
CVE:	CVE-2012-1889
Remote:	Yes
Local:	No
Published:	Jun 12 2012 12:00AM
Updated:	Jul 05 2012 11:30PM
Credit:	Qihoo 360 Security Center
Vulnerable:	Microsoft XML Core Services 6.0 Microsoft XML Core Services 5.0 Microsoft XML Core Services 4.0 Microsoft XML Core Services 3.0

Not Vulnerable:

Security Discussion

Microsoft XML Core Services is prone to a remote code-execution vulnerability.

Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions.

Microsoft XML Core Services versions 3.0, 4.0, 5.0, and 6.0 are affected.

Proof of Concept and Security Exploits

The vendor reports this issue is actively being exploited in the wild.

The following exploit is available:

/data/vulnerabilities/exploits/53934.rb

Security Solution(s)

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: vuldb@securityfocus.com.

Security References(s)

References:

Microsoft Windows Homepage (Microsoft )

Emagined Security Blog featuring Dr. Eugene Schultz

Secure Web Programming
by Vizual Services