| VID |
26124 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of Microsoft Office 2000 which is older than SP3 is installed on the relevant host. Microsoft Office 2000 SP2 and earlier could allow a local attacker to browse restricted drivers. The problem occurs because of the way that policies are applied. When you restrict access to a drive by establishing a group policy, restrictions apply to users, but they do not apply to services and programs. Because the browse feature is performed through a program such as Microsoft Excel or Microsoft Word, the program is permitted to view the drive. As a result, By using Microsoft Office 2000 programs, a local attacker can view the contents of restricted drivers.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://support.microsoft.com/?id=302753
http://archives.neohapsis.com/archives/bugtraq/2005-02/0420.html
http://www.securiteam.com/windowsntfocus/5UP0M15EUW.html
* Platforms Affected:
Microsoft Office 2000 SP2 and earlier
Microsoft Windows Any version |
| Recommendation |
Install the latest Microsoft Office 2000 Service Pack (3 or later), available from the latest Office 2000 Service Pack Download site at http://support.microsoft.com/kb/276367 |
| Related URL |
CVE-2005-0545 (CVE) |
| Related URL |
12641 (SecurityFocus) |
| Related URL |
19461 (ISS) |
|
