|
|
Microsoft Log Sink Class ActiveX Control Arbitrary File Creation Vulnerability
|
Bugtraq ID:
|
12646
|
|
Class:
|
Design Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Apr 29 2003 12:00AM
|
|
Updated:
|
Apr 29 2003 12:00AM
|
|
Credit:
|
This vulnerability was originally announced by the vendor, the issue was also independently discovered by Shane Hird <shanehird@yahoo.com>.
|
|
Vulnerable:
|
Microsoft Visio 2002 SP1
Microsoft Visio 2002
Microsoft SharePoint Portal Server 2001 SP1
-
Microsoft IIS 5.0
-
Microsoft Windows 2000 Advanced Server SP2
-
Microsoft Windows 2000 Advanced Server SP1
-
Microsoft Windows 2000 Advanced Server
-
Microsoft Windows 2000 Server SP2
-
Microsoft Windows 2000 Server SP1
-
Microsoft Windows 2000 Server
Microsoft SharePoint Portal Server 2001
-
Microsoft IIS 5.0
-
Microsoft Windows 2000 Advanced Server SP2
-
Microsoft Windows 2000 Advanced Server SP1
-
Microsoft Windows 2000 Advanced Server
-
Microsoft Windows 2000 Server SP2
-
Microsoft Windows 2000 Server SP1
-
Microsoft Windows 2000 Server
Microsoft Office XP SP3
+
Microsoft Excel 2002 SP3
+
Microsoft Excel 2002 SP3
+
Microsoft FrontPage 2002 SP3
+
Microsoft FrontPage 2002 SP3
+
Microsoft Outlook 2002 SP3
+
Microsoft Outlook 2002 SP3
+
Microsoft PowerPoint 2002 SP3
+
Microsoft PowerPoint 2002 SP3
+
Microsoft Publisher 2002 SP3
+
Microsoft Publisher 2002 SP3
Microsoft Office XP SP2
-
Microsoft Windows 2000 Professional SP3
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 98
-
Microsoft Windows 98SE
-
Microsoft Windows ME
-
Microsoft Windows NT Workstation 4.0 SP6a
-
Microsoft Windows NT Workstation 4.0 SP6
-
Microsoft Windows NT Workstation 4.0 SP5
-
Microsoft Windows NT Workstation 4.0 SP4
-
Microsoft Windows NT Workstation 4.0 SP3
-
Microsoft Windows NT Workstation 4.0 SP2
-
Microsoft Windows NT Workstation 4.0 SP1
-
Microsoft Windows NT Workstation 4.0
-
Microsoft Windows XP Home SP1
-
Microsoft Windows XP Home
-
Microsoft Windows XP Professional SP1
-
Microsoft Windows XP Professional
Microsoft Office XP SP1
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 98
-
Microsoft Windows ME
-
Microsoft Windows NT Workstation 4.0 SP6a
-
Microsoft Windows NT Workstation 4.0 SP6
-
Microsoft Windows NT Workstation 4.0 SP5
-
Microsoft Windows NT Workstation 4.0 SP4
-
Microsoft Windows NT Workstation 4.0 SP3
-
Microsoft Windows NT Workstation 4.0 SP2
-
Microsoft Windows NT Workstation 4.0 SP1
-
Microsoft Windows NT Workstation 4.0
-
Microsoft Windows XP Home
-
Microsoft Windows XP Professional
Microsoft Office XP
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 98
-
Microsoft Windows ME
-
Microsoft Windows NT Workstation 4.0 SP6a
-
Microsoft Windows NT Workstation 4.0 SP6
-
Microsoft Windows NT Workstation 4.0 SP5
-
Microsoft Windows NT Workstation 4.0 SP4
-
Microsoft Windows NT Workstation 4.0 SP3
-
Microsoft Windows NT Workstation 4.0 SP2
-
Microsoft Windows NT Workstation 4.0 SP1
-
Microsoft Windows NT Workstation 4.0
-
Microsoft Windows XP Home
-
Microsoft Windows XP Professional
|
|
|
|
Not Vulnerable:
|
Microsoft Visio 2002 SP2
Microsoft SharePoint Portal Server 2001 SP3
Microsoft SharePoint Portal Server 2001 SP2A
Microsoft SharePoint Portal Server 2001 SP2
|
|
|
