CVE-2010-0917 - OpenCVE

Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution when the F1 key is pressed, a different vulnerability than CVE-2010-0483.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:H/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Internet Explorer Windows 2000 Windows 2003 Server Windows Server 2003 Windows Xp

Configuration 1 [-]

AND

OR	cpe:2.3:o:microsoft:windows_2000::sp4::::::*
	cpe:2.3:o:microsoft:windows_2003_server::sp2::::::*
	cpe:2.3:o:microsoft:windows_2003_server::sp2:itanium:::::
	cpe:2.3:o:microsoft:windows_server_2003::sp2::::::*
	cpe:2.3:o:microsoft:windows_xp::sp2::::::*
	cpe:2.3:o:microsoft:windows_xp::sp3::::::*
	cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:::::*

OR	cpe:2.3:a:microsoft:internet_explorer:6:::::::*
	cpe:2.3:a:microsoft:internet_explorer:7:::::::*
	cpe:2.3:a:microsoft:internet_explorer:8:::::::*

No data.

References

Link	Providers
http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx
http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt
http://isec.pl/vulnerabilities10.html
http://www.microsoft.com/technet/security/advisory/981169.mspx
http://www.securityfocus.com/bid/38473
http://www.theregister.co.uk/2010/03/01/ie_code_execution_bug/
https://exchange.xforce.ibmcloud.com/vulnerabilities/56560

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-03-03T19:00:00

Updated: 2024-08-07T01:06:52.497Z

Reserved: 2010-03-03T00:00:00

Link: CVE-2010-0917

Vulnrichment

No data.

NVD

Status : Modified

Published: 2010-03-03T19:30:00.667

Modified: 2019-02-26T14:04:00.993

Link: CVE-2010-0917

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-02-26T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution when the F1 key is pressed, a different vulnerability than CVE-2010-0483."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.microsoft.com/technet/security/advisory/981169.mspx"}, {"tags": ["x_refsource_MISC"], "url": "http://www.theregister.co.uk/2010/03/01/ie_code_execution_bug/"}, {"tags": ["x_refsource_MISC"], "url": "http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt"}, {"tags": ["x_refsource_MISC"], "url": "http://isec.pl/vulnerabilities10.html"}, {"name": "38473", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/38473"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx"}, {"name": "ms-win-winhlp32-bo(56560)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56560"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-0917", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution when the F1 key is pressed, a different vulnerability than CVE-2010-0483."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.microsoft.com/technet/security/advisory/981169.mspx", "refsource": "CONFIRM", "url": "http://www.microsoft.com/technet/security/advisory/981169.mspx"}, {"name": "http://www.theregister.co.uk/2010/03/01/ie_code_execution_bug/", "refsource": "MISC", "url": "http://www.theregister.co.uk/2010/03/01/ie_code_execution_bug/"}, {"name": "http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt", "refsource": "MISC", "url": "http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt"}, {"name": "http://isec.pl/vulnerabilities10.html", "refsource": "MISC", "url": "http://isec.pl/vulnerabilities10.html"}, {"name": "38473", "refsource": "BID", "url": "http://www.securityfocus.com/bid/38473"}, {"name": "http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx", "refsource": "CONFIRM", "url": "http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx"}, {"name": "ms-win-winhlp32-bo(56560)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56560"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T01:06:52.497Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.microsoft.com/technet/security/advisory/981169.mspx"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.theregister.co.uk/2010/03/01/ie_code_execution_bug/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://isec.pl/vulnerabilities10.html"}, {"name": "38473", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/38473"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx"}, {"name": "ms-win-winhlp32-bo(56560)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56560"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2010-0917", "datePublished": "2010-03-03T19:00:00", "dateReserved": "2010-03-03T00:00:00", "dateUpdated": "2024-08-07T01:06:52.497Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*", "matchCriteriaId": "83E7C4A0-78CF-4B56-82BF-EC932BDD8ADF", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "2978BF86-5A1A-438E-B81F-F360D0E30C9C", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:*", "matchCriteriaId": "F7EFB032-47F4-4497-B16B-CB9126EAC9DF", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "4D3B5E4F-56A6-4696-BBB4-19DF3613D020", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "9B339C33-8896-4896-88FF-88E74FDBC543", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*", "matchCriteriaId": "CE477A73-4EE4-41E9-8694-5A3D5DC88656", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:*", "matchCriteriaId": "FFAC3F90-77BF-4F56-A89B-8A3D2D1FC6D6", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*", "matchCriteriaId": "693D3C1C-E3E4-49DB-9A13-44ADDFF82507", "vulnerable": false}, {"criteria": "cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*", "matchCriteriaId": "1A33FA7F-BB2A-4C66-B608-72997A2BD1DB", "vulnerable": false}, {"criteria": "cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*", "matchCriteriaId": "A52E757F-9B41-43B4-9D67-3FEDACA71283", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution when the F1 key is pressed, a different vulnerability than CVE-2010-0483."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en VBScript en Microsoft Windows 2000 SP4, XP SP2 y SP3 y Server 2003 SP2, al usar Internet Explorer, puede permitir a atacantes remotos asistidos por el usuario ejecutar c\u00f3digo de su elecci\u00f3n mediante una cadena larga en el cuarto argumento (alias argumento helpfile) para una funci\u00f3n MsgBox, que conduce a la ejecuci\u00f3n de c\u00f3digo cuando se pulsa la tecla F1, una vulnerabilidad diferente a CVE-2010-0483."}], "id": "CVE-2010-0917", "lastModified": "2019-02-26T14:04:00.993", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2010-03-03T19:30:00.667", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://isec.pl/vulnerabilities10.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.microsoft.com/technet/security/advisory/981169.mspx"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/38473"}, {"source": "cve@mitre.org", "url": "http://www.theregister.co.uk/2010/03/01/ie_code_execution_bug/"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56560"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}