• info
• discussion
• exploit
• solution
• references

Microsoft Windows XML Core Services XSLT Buffer Overrun Vulnerability

Solution:
Microsoft has released security bulletin MS06-061 to address this issue. Please see the attached security bulletin for information on how to obtain fixes.


Microsoft XML Core Services 3.0 SP7

• Microsoft Security Update for Office 2003 (KB924424)
  Microsoft Office 2003 Service Pack 1 or Service Pack 2 with Microsoft XML Core Services 5.0 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8A37C111-D8E9 -4C2E-9674-169B3331491C


• Microsoft Security Update for Windows Server 2003 (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003
  http://www.microsoft.com/downloads/details.aspx?FamilyId=09b77b2a-a4fd -46e2-af15-2385790c9ee7


• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyId=31c88513-29df -475b-b9ae-a2f5c1f32a8c


• Microsoft Security Update for Windows Server 2003 x64 Edition (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6183a9d2-89f5 -4b25-be8b-090c6e050740


• Microsoft Security Update for Windows XP (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8a455c3b-213c -4395-87e9-9895f2b9a6ed

Microsoft XML Core Services 6.0

• Microsoft Vulnerabilities in Microsoft XML Core Services 6.0 RTM Could Allow Remote Code Execution (925673)
  Windows 2000 Service Pack 4, Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2, and Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=fd513435-fa6d -407c-bedc-5fd03e5b7d6c

Microsoft XML Core Services 4.0

• Microsoft Vulnerabilities in Microsoft XML Core Services 4.0 SP2 Could Allow Remote Code Execution (925672) -
  Windows 2000 Service Pack 4, Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2, and Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=961f3c95-ec4e -4561-ab27-b3180e9139c5

Microsoft XML Parser 2.6

• Microsoft Security Update for Office 2003 (KB924424)
  Microsoft Office 2003 Service Pack 1 or Service Pack 2 with Microsoft XML Core Services 5.0 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8A37C111-D8E9 -4C2E-9674-169B3331491C


• Microsoft Security Update for Windows 2000 (KB924191) - English
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Windows 2000 Service Pack 4
  http://www.microsoft.com/downloads/details.aspx?familyid=f9d16d74-1785 -4c33-b1fc-df5258dd1089&displaylang=en


• Microsoft Security Update for Windows Server 2003 (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003
  http://www.microsoft.com/downloads/details.aspx?FamilyId=09b77b2a-a4fd -46e2-af15-2385790c9ee7


• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyId=31c88513-29df -475b-b9ae-a2f5c1f32a8c


• Microsoft Security Update for Windows Server 2003 x64 Edition (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6183a9d2-89f5 -4b25-be8b-090c6e050740


• Microsoft Security Update for Windows XP (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8a455c3b-213c -4395-87e9-9895f2b9a6ed


• Microsoft Security Update for Windows XP x64 Edition (KB924191) - English
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Professional x64 Edition
  http://www.microsoft.com/downloads/details.aspx?familyid=5593333f-bcd5 -4750-a23d-4f7fccda6493&displaylang=en

Microsoft XML Core Services 3.0 SP4

• Microsoft Security Update for Office 2003 (KB924424)
  Microsoft Office 2003 Service Pack 1 or Service Pack 2 with Microsoft XML Core Services 5.0 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8A37C111-D8E9 -4C2E-9674-169B3331491C


• Microsoft Security Update for Windows Server 2003 (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003
  http://www.microsoft.com/downloads/details.aspx?FamilyId=09b77b2a-a4fd -46e2-af15-2385790c9ee7


• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyId=31c88513-29df -475b-b9ae-a2f5c1f32a8c


• Microsoft Security Update for Windows Server 2003 x64 Edition (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6183a9d2-89f5 -4b25-be8b-090c6e050740


• Microsoft Security Update for Windows XP (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8a455c3b-213c -4395-87e9-9895f2b9a6ed


• Microsoft Security Update for Windows XP x64 Edition (KB924191) - English
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Professional x64 Edition
  http://www.microsoft.com/downloads/details.aspx?familyid=5593333f-bcd5 -4750-a23d-4f7fccda6493&displaylang=en

Microsoft XML Core Services 3.0 SP3

• Microsoft Security Update for Office 2003 (KB924424)
  Microsoft Office 2003 Service Pack 1 or Service Pack 2 with Microsoft XML Core Services 5.0 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8A37C111-D8E9 -4C2E-9674-169B3331491C


• Microsoft Security Update for Windows Server 2003 (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003
  http://www.microsoft.com/downloads/details.aspx?FamilyId=09b77b2a-a4fd -46e2-af15-2385790c9ee7


• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyId=31c88513-29df -475b-b9ae-a2f5c1f32a8c


• Microsoft Security Update for Windows Server 2003 x64 Edition (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6183a9d2-89f5 -4b25-be8b-090c6e050740


• Microsoft Security Update for Windows XP (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8a455c3b-213c -4395-87e9-9895f2b9a6ed

Microsoft XML Core Services 3.0

• Microsoft Security Update for Office 2003 (KB924424)
  Microsoft Office 2003 Service Pack 1 or Service Pack 2 with Microsoft XML Core Services 5.0 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8A37C111-D8E9 -4C2E-9674-169B3331491C


• Microsoft Security Update for Windows 2000 (KB924191) - English
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Windows 2000 Service Pack 4
  http://www.microsoft.com/downloads/details.aspx?familyid=f9d16d74-1785 -4c33-b1fc-df5258dd1089&displaylang=en


• Microsoft Security Update for Windows Server 2003 (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003
  http://www.microsoft.com/downloads/details.aspx?FamilyId=09b77b2a-a4fd -46e2-af15-2385790c9ee7


• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyId=31c88513-29df -475b-b9ae-a2f5c1f32a8c


• Microsoft Security Update for Windows Server 2003 x64 Edition (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6183a9d2-89f5 -4b25-be8b-090c6e050740


• Microsoft Security Update for Windows XP (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8a455c3b-213c -4395-87e9-9895f2b9a6ed

Microsoft XML Core Services 3.0 SP5

• Microsoft Security Update for Office 2003 (KB924424)
  Microsoft Office 2003 Service Pack 1 or Service Pack 2 with Microsoft XML Core Services 5.0 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8A37C111-D8E9 -4C2E-9674-169B3331491C


• Microsoft Security Update for Windows Server 2003 (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003
  http://www.microsoft.com/downloads/details.aspx?FamilyId=09b77b2a-a4fd -46e2-af15-2385790c9ee7


• Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyId=31c88513-29df -475b-b9ae-a2f5c1f32a8c


• Microsoft Security Update for Windows Server 2003 x64 Edition (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6183a9d2-89f5 -4b25-be8b-090c6e050740


• Microsoft Security Update for Windows XP (KB924191)
  Microsoft XML Parser 2.6 (all versions) and Microsoft XML Core Services 3.0 (all versions) on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?FamilyId=8a455c3b-213c -4395-87e9-9895f2b9a6ed