Vulnerability CVE-2013-7331 - CERT Civis.Net

Vulnerability Name:

CVE-2013-7331 (CCN-91305)

Assigned:

2014-02-17

Published:

2014-02-17

Updated:

2019-05-14

Summary:

The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier allows remote attackers to determine the existence of local pathnames, UNC share pathnames, intranet hostnames, and intranet IP addresses by examining error codes, as demonstrated by a res:// URL, and exploited in the wild in February 2014.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2013-7331

Source: CCN
Type: Microsoft Security Bulletin MS14-052
Cumulative Security Update for Internet Explorer (2977629)

Source: CCN
Type: Microsoft Security Bulletin MS14-056
Cumulative Security Update for Internet Explorer (2987107)

Source: CCN
Type: Microsoft Security Bulletin MS14-065
Cumulative Security Update for Internet Explorer (3003057)

Source: CCN
Type: Microsoft Security Bulletin MS14-080
Cumulative Security Update for Internet Explorer (3008923)

Source: CCN
Type: FireEye Blog, February 13, 2014
Operation SnowMan: DeputyDog Actor Compromises US Veterans of Foreign Wars Website

Source: MISC
Type: Third Party Advisory
http://www.fireeye.com/blog/uncategorized/2014/02/operation-snowman-deputydog-actor-compromises-us-veterans-of-foreign-wars-website.html

Source: CCN
Type: US-CERT VU#539289
Microsoft XMLDOM ActiveX control information disclosure vulnerability

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#539289

Source: CCN
Type: Microsoft Web site
Microsoft

Source: CCN
Type: BID-65601
Microsoft Internet Explorer CVE-2013-7331 Information Disclosure Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1030818

Source: MS
Type: Patch, Vendor Advisory
MS14-052

Source: XF
Type: UNKNOWN
ms-xmldom-activex-info-disc(91305)

Source: MISC
Type: Exploit
https://soroush.secproject.com/blog/2013/04/microsoft-xmldom-in-ie-can-divulge-information-of-local-drivenetwork-in-error-messages/

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:internet_explorer:6:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*

Configuration 2:

cpe:/a:microsoft:internet_explorer:7:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Configuration 3:

cpe:/a:microsoft:internet_explorer:8:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*

OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Configuration 4:

cpe:/a:microsoft:internet_explorer:9:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Configuration 5:

cpe:/a:microsoft:internet_explorer:10:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_8:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_rt:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Configuration 6:

cpe:/a:microsoft:internet_explorer:11:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:microsoft:internet_explorer:9:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:7:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:8:*:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:10:consumer_preview:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:26611	V	Internet Explorer resource information disclosure vulnerability - CVE-2013-7331 (MS14-052)	2014-10-27