|
|
Microsoft Internet Explorer 区域欺骗漏洞
发布时间:2001-11-16
更新时间:2001-11-16
严重程度:高
威胁程度:其它
错误类型:设计错误
利用方式:服务器模式
受影响系统Microsoft Internet Explorer 5.01
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows 2000
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 Terminal Services
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0SP1
- Microsoft Windows NT 4.0SP2
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.0.1SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 2000
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000 SP2
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0SP1
- Microsoft Windows NT 4.0SP2
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.0.1SP1
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 2000
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000 SP2
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0SP1
- Microsoft Windows NT 4.0SP2
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.5SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98se
- Microsoft Windows ME
- Microsoft Windows 2000
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 Terminal Services
- Microsoft Windows NT Terminal Server
- Microsoft Windows NT 3.5.1
- Microsoft Windows NT 3.5.1SP1
- Microsoft Windows NT 3.5.1SP2
- Microsoft Windows NT 3.5.1SP3
- Microsoft Windows NT 3.5.1SP4
- Microsoft Windows NT 3.5.1SP5
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0SP1
- Microsoft Windows NT 4.0SP2
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
- Microsoft Windows NT Enterprise Server 4.0
Microsoft Internet Explorer 5.5SP1
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 2000
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000 SP2
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0SP1
- Microsoft Windows NT 4.0SP2
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.5
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 2000
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000 SP2
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0SP1
- Microsoft Windows NT 4.0SP2
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a 详细描述
Microsoft Internet Explorer 包含一个安全设置可以根据用户参数进行修改,
这些设置可以控制WEB站点对用户系统的处理能力。
IE中存在一个漏洞可以允许WEB站点查看本地intranet区域(local intranet zone)
的内容,导致敏感信息被泄露。
转换目标WEB站点IP地址为无点类型IP地址并提交,可以导致IE在本地intranet区域
浏览站点。
Microsoft Security Bulletin MS01-055 描述这个是新的问题,虽然没有详细技术细节提供。
测试代码
如下面地址需要认证:
http://mike@msdn.microsoft.com
可以转换IP地址为DWORD地址:
IP: 207.46.239.122
207 * 16777216 = 3472883712
46 * 65536 = 3014656
239 * 256 = 61184
122 * 1 = 122
------------------------------------------------ +
= 3475959674
把@符号转换为%40,利用如下地址
http://mike%403475959674 进行访问。
解决方案
下载补丁:
Microsoft Internet Explorer 5.01:
Microsoft Patch IE5.01 Q306121.exe
http://download.microsoft.com/download/ie501sp2/secpac20/5.01SP2/WIN98/EN-US/q306121.exe
Microsoft Internet Explorer 5.0.1SP2:
Microsoft Internet Explorer 5.0.1SP1:
Microsoft Internet Explorer 5.5SP2:
Microsoft Hotfix IE5.5 Q312461.exe
http://download.microsoft.com/download/ie55sp2/secpac22/5.5_SP2/WIN98Me/EN-US/q312461.exe
相关信息
Michiel Kikkert <security@kikkert.nl>
参考:http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-055.asp
http://www.securityfocus.com/archive/1/F113QTwL7d2V5k4q9mb00002e64@hotmail.com
http://www.microsoft.com/techn
|
