Vulnerability CVE-2007-0214 - CERT Civis.Net

Vulnerability Name:

CVE-2007-0214 (CCN-32109)

Assigned:

2007-02-13

Published:

2007-02-13

Updated:

2018-10-12

Summary:

The HTML Help ActiveX control (Hhctrl.ocx) in Microsoft Windows 2000 SP3, XP SP2 and Professional, 2003 SP1 allows remote attackers to execute arbitrary code via unspecified functions, related to uninitialized parameters.

CVSS v3 Severity:

9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.6 High (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C)
5.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2007-0214

Source: CCN
Type: SA24136
Microsoft Windows HTML Help ActiveX Control Vulnerability

Source: SECUNIA
Type: UNKNOWN
24136

Source: CCN
Type: SECTRACK ID: 1017635
Microsoft HTML Help ActiveX Control Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: ASA-2007-081
MS07-008 Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843)

Source: CCN
Type: US-CERT VU#563756
Microsoft HTML Help ActiveX control fails to properly validate input

Source: CERT-VN
Type: US Government Resource
VU#563756

Source: CCN
Type: Microsoft Security Bulletin MS07-008
Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843)

Source: OSVDB
Type: UNKNOWN
31884

Source: CCN
Type: OSVDB ID: 31884
Microsoft Windows HTML Help ActiveX Control Arbitrary Code Execution

Source: BID
Type: UNKNOWN
22478

Source: CCN
Type: BID-22478
Microsoft HTML Help ActiveX Control Remote Code Execution Vulnerability

Source: SECTRACK
Type: UNKNOWN
1017635

Source: CERT
Type: US Government Resource
TA07-044A

Source: VUPEN
Type: UNKNOWN
ADV-2007-0577

Source: MS
Type: UNKNOWN
MS07-008

Source: XF
Type: UNKNOWN
win-htmlhelp-activex-code-execution(32109)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:125

Vulnerable Configuration:

Configuration 1:

cpe:/o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:itanium:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp1:*:itanium:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*

OR cpe:/a:microsoft:windows_2003:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:125	V	HTML Help ActiveX Control Vulnerability	2007-04-10