CVE-2008-3068

Severity

75%

Complexity

99%

Confidentiality

106%

Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificate embedded in a (1) S/MIME e-mail message or (2) signed document, which allows remote attackers to obtain reading times and IP addresses of recipients, and port-scan results, via a crafted certificate with an Authority Information Access (AIA) extension.

Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificate embedded in a (1) S/MIME e-mail message or (2) signed document, which allows remote attackers to obtain reading times and IP addresses of recipients, and port-scan results, via a crafted certificate with an Authority Information Access (AIA) extension.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 16 years ago

2008-07-07 23:41:00

Last updated 6 years ago

2018-10-11 20:45:00

Affected Software

マイクロソフト Access 2007

2007

マイクロソフト エクセル 2003

2003

マイクロソフト エクセル 2007

2007

Microsoft Frontpage 2003

2003

Microsoft Groove 2007

2007

Microsoft InfoPath 2003

2003

Microsoft InfoPath 2007

2007

Microsoft Office 2007

2007

Microsoft Office 2007 Service Pack 1

2007

Microsoft office_communicator 2007

2007

Microsoft OneNote 2003

2003

Microsoft Outlook 2003

2003

Microsoft Outlook 2007

2007

Microsoft PowerPoint 2003

2003

Microsoft PowerPoint 2007

2007

Microsoft Publisher 2003

2003

Microsoft Publisher 2007

2007

Microsoft Sharepoint Designer 2007

2007

References

3978

20080703 Unauthorized reading confirmation from Outlook

20080709 Re: Unauthorized reading confirmation from Outlook

28548

1019736

1019737

1019738

https://www.cynops.de/advisories/AKLINK-SA-2008-002.txt

https://www.cynops.de/advisories/AKLINK-SA-2008-003.txt

https://www.cynops.de/advisories/AKLINK-SA-2008-004.txt

https://www.cynops.de/techzone/http_over_x509.html

https://www.klink.name/security/aklink-sa-2008-002-outlook-smime.txt

https://www.klink.name/security/aklink-sa-2008-003-live-mail-smime.txt

https://www.klink.name/security/aklink-sa-2008-004-office2007-signatures.txt

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.