![\"NCCIC](\"https:\/\/public.govdelivery.com\/system\/images\/37745\/original\/BANNER_NCCIC_USC_01.png\")
<\/p>\n<\/p>\n
National Cyber Awareness System:<\/p>\n
<\/p>\n
A vulnerability in Microsoft Windows Object Linking and Embedding (OLE) could allow remote code execution if a user views a specially-crafted web page in Internet Explorer.[1]<\/a><\/p>\n The Microsoft Windows OLE OleAut32.dll library provides the SafeArrayRedim function that allows resizing of SAFEARRAY objects in memory.[2]<\/a> In certain circumstances, this library does not properly check sizes of arrays when an error occurs. The improper size allows an attacker to manipulate memory in a way that can bypass the Internet Explorer Enhanced Protected Mode (EPM) sandbox as well as the Enhanced Mitigation Experience Toolkit (EMET).<\/p>\n This vulnerability can be exploited using a specially-crafted web page utilizing VBscript in Internet Explorer. However, it may impact other software that makes use of OleAut32.dll and VBscript.<\/p>\n Exploit code is publicly available for this vulnerability. Additional details may be found in CERT\/CC Vulnerability Note VU#158647<\/a>.<\/p>\n Arbitrary code can be run on the computer with user privileges. If the user is an administrator, the attacker may run arbitrary code as an administrator, fully compromising the system.<\/p>\n An update is available from Microsoft.[3]<\/a> Please see Microsoft Security Bulletin MS14-064 for more details and mitigation guidance, and apply the necessary updates.<\/p>\n National Cyber Awareness System: TA14-318B: Microsoft Windows OLE Automation Array Remote Code Execution Vulnerability 11\/14\/2014 05:42 PM EST Original release date: November 14, 2014 Systems Affected Microsoft Windows Vista, 7, 8, 8.1, RT, and RT 8.1 Microsoft Server 2003, Server … Continue reading Description<\/h3>\n
Impact<\/h3>\n
Solution<\/h3>\n
References<\/h3>\n
\n
Revision History<\/h3>\n
\n