| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 3.2 | $0-$5k | 0.00 |
Summary
A vulnerability categorized as problematic has been discovered in Microsoft Windows up to Vista. Impacted is an unknown function of the component XML Core Services. Executing a manipulation can lead to access control. This vulnerability is handled as CVE-2014-1816. The attack can be executed remotely. There is not any exploit available. A patch should be applied to remediate this issue.
Details
A vulnerability classified as problematic was found in Microsoft Windows up to Vista (Operating System). This vulnerability affects an unknown functionality of the component XML Core Services. The manipulation with an unknown input leads to a access control vulnerability. The CWE definition for the vulnerability is CWE-264. As an impact it is known to affect confidentiality.
The weakness was released 06/10/2014 by Christian Kulenkampff as MS14-033 as confirmed bulletin (Technet). The advisory is available at technet.microsoft.com. This vulnerability was named CVE-2014-1816 since 01/29/2014. The exploitation appears to be difficult. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. The technical details are unknown and an exploit is not available. The structure of the vulnerability defines a possible price range of USD $0-$5k at the moment (estimation calculated on 12/20/2024). This vulnerability is assigned to T1068 by the MITRE ATT&CK project.
The vulnerability scanner Nessus provides a plugin with the ID 74425 (MS14-033: Vulnerability in Microsoft XML Core Services Could Allow Information Disclosure (2966061)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Windows : Microsoft Bulletins. The commercial vulnerability scanner Qualys is able to test this issue with plugin 90959 (Microsoft XML Core Services Information Disclosure Vulnerability (MS14-033)).
Applying the patch MS14-033 is able to eliminate this problem. The bugfix is ready for download at technet.microsoft.com. A possible mitigation has been published immediately after the disclosure of the vulnerability. The bulletin contains the following remark:
You can disable attempts to use a specific binary behavior in Internet Explorer by setting the kill bit for the behavior in the registry.
The vulnerability is also documented in the databases at X-Force (93426), Tenable (74425), SecurityFocus (BID 67895†), Secunia (SA58538†) and SecurityTracker (ID 1030382†). Additional details are provided at isc.sans.edu. Entries connected to this vulnerability are available at VDB-13306, VDB-13498, VDB-13512 and VDB-13511. If you want to get best quality of vulnerability data, you may have to visit VulDB.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.microsoft.com/
- Product: https://www.microsoft.com/en-us/windows
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 3.7VulDB Meta Temp Score: 3.2
VulDB Base Score: 3.7
VulDB Temp Score: 3.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Access controlCWE: CWE-264
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Unproven
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 74425
Nessus Name: MS14-033: Vulnerability in Microsoft XML Core Services Could Allow Information Disclosure (2966061)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: MS14-033
Timeline
01/29/2014 🔍06/10/2014 🔍
06/10/2014 🔍
06/10/2014 🔍
06/10/2014 🔍
06/10/2014 🔍
06/10/2014 🔍
06/11/2014 🔍
06/11/2014 🔍
06/11/2014 🔍
06/11/2014 🔍
12/20/2024 🔍
Sources
Vendor: microsoft.comProduct: microsoft.com
Advisory: MS14-033
Researcher: Christian Kulenkampff
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2014-1816 (🔍)
GCVE (CVE): GCVE-0-2014-1816
GCVE (VulDB): GCVE-100-13546
OVAL: 🔍
IAVM: 🔍
X-Force: 93426 - Microsoft XML Core Services information disclosure, Medium Risk
SecurityFocus: 67895 - Microsoft XML Core Services CVE-2014-1816 Information Disclosure Vulnerability
Secunia: 58538 - Microsoft Microsoft XML Core Services XML Entity Information Disclosure Vulnerability, Less Critical
SecurityTracker: 1030382 - Microsoft XML Core Services (MSXML) Bug Lets Remote Users Obtain Potentially Sensitive Information
Vulnerability Center: 44876 - [MS14-033] Microsoft XML Core Services Remote Information Disclosure due to Improper Enforce of User Access Controls, Medium
scip Labs: https://www.scip.ch/en/?labs.20140213
Misc.: 🔍
See also: 🔍
Entry
Created: 06/11/2014 23:09Updated: 12/20/2024 04:07
Changes: 06/11/2014 23:09 (84), 04/07/2017 15:09 (6), 06/22/2021 14:37 (3), 06/22/2021 14:39 (1), 12/20/2024 04:07 (16)
Complete: 🔍
Cache ID: 216::103
If you want to get best quality of vulnerability data, you may have to visit VulDB.
No comments yet. Languages: en.
Please log in to comment.