Vulnerability Name:

CVE-2011-1280 (CCN-67761)

Assigned:2011-06-14
Published:2011-06-14
Updated:2018-10-12
Summary:The XML Editor in Microsoft InfoPath 2007 SP2 and 2010; SQL Server 2005 SP3 and SP4 and 2008 SP1, SP2, and R2; SQL Server Management Studio Express (SSMSE) 2005; and Visual Studio 2005 SP1, 2008 SP1, and 2010 does not properly handle external entities, which allows remote attackers to read arbitrary files via a crafted .disco (Web Service Discovery) file, aka "XML External Entities Resolution Vulnerability."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2011-1280

Source: CCN
Type: SA44912
Microsoft XML Editor External Entities Resolution Information Disclosure Vulnerability

Source: SECUNIA
Type: UNKNOWN
44912

Source: CCN
Type: Microsoft Security Bulletin MS12-070
Vulnerability in SQL Server Could Allow Elevation of Privilege (2754849)

Source: CCN
Type: Microsoft Security Bulletin MS14-044
Vulnerabilities in SQL Server Could Allow Elevation of Privilege (2984340)

Source: CCN
Type: Microsoft Security Bulletin MS11-049
Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (2543893)

Source: BID
Type: UNKNOWN
48196

Source: CCN
Type: BID-48196
Microsoft XML External Entities Resolution CVE-2011-1280 Information Disclosure Vulnerability

Source: SECTRACK
Type: UNKNOWN
1025646

Source: SECTRACK
Type: UNKNOWN
1025647

Source: SECTRACK
Type: UNKNOWN
1025648

Source: MS
Type: UNKNOWN
MS11-049

Source: XF
Type: UNKNOWN
ms-xml-discovery-info-disc(67761)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:12664

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:office_infopath:2007:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:office_infopath:2010:*:x32:*:*:*:*:*
  • OR cpe:/a:microsoft:office_infopath:2010:*:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:express:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:express_advanced_services:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:express:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:express_advanced_services:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:r2:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:r2:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp1:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp1:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp2:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp2:x32:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp2:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server_management_studio_express:2005:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server_management_studio_express:2005:*:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2010:-:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:visual_studio:2010:-:*:*:*:*:*:*
  • OR cpe:/a:microsoft:infopath:2007:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:infopath:2010:sp1:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp1:x32:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp1:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp1:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp2:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:sp2:x32:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:r2:itanium:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2008:r2:x64:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp3:express:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2005:sp4:express:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:12664
    V
    		XML External Entities Resolution Vulnerability
    2015-06-15
    BACK
    microsoft office infopath 2007 sp2
    microsoft office infopath 2010
    microsoft office infopath 2010
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp4
    microsoft sql server 2005 sp4
    microsoft sql server 2005 sp4
    microsoft sql server 2005 sp4
    microsoft sql server 2005 sp4
    microsoft sql server 2008 r2
    microsoft sql server 2008 r2
    microsoft sql server 2008 sp1
    microsoft sql server 2008 sp1
    microsoft sql server 2008 sp2
    microsoft sql server 2008 sp2
    microsoft sql server 2008 sp2
    microsoft sql server management studio express 2005
    microsoft sql server management studio express 2005
    microsoft visual studio 2005 sp1
    microsoft visual studio 2008 sp1
    microsoft visual studio 2010
    microsoft visual studio 2005 sp1
    microsoft visual studio 2008 sp1
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp3
    microsoft visual studio 2010
    microsoft infopath 2007 sp2
    microsoft infopath 2010 sp1
    microsoft sql server 2005 sp4
    microsoft sql server 2005 sp4
    microsoft sql server 2008 sp1
    microsoft sql server 2008 sp1
    microsoft sql server 2008 sp1
    microsoft sql server 2008 sp2
    microsoft sql server 2008 sp2
    microsoft sql server 2008 r2
    microsoft sql server 2008 r2
    microsoft sql server 2005 sp3
    microsoft sql server 2005 sp4