|
|
Microsoft VBScript 相同起源策略冲突漏洞(MS02-009)
发布时间:2002-02-25
更新时间:2002-02-25
严重程度:高
威胁程度:读取受限文件
错误类型:设计错误
利用方式:客户机模式
BUGTRAQ ID:4158
受影响系统Microsoft Internet Explorer 5.01
+ Microsoft Windows 2000 Terminal Services
+ Microsoft Windows 2000 Workstation
+ Microsoft Windows 2000 Workstation SP1
+ Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
+ Microsoft Windows ME
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.0.1SP2
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.0.1SP1
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.5SP2
- Microsoft Windows 2000 Terminal Services
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98SE
- Microsoft Windows ME
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
- Microsoft Windows NT Enterprise Server 4.0
- Microsoft Windows NT Terminal Server 4.0
Microsoft Internet Explorer 5.5SP1
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 5.5
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0SP3
- Microsoft Windows NT 4.0SP4
- Microsoft Windows NT 4.0SP5
- Microsoft Windows NT 4.0SP6
- Microsoft Windows NT 4.0SP6a
Microsoft Internet Explorer 6.0
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 98
- Microsoft Windows 98SE
- Microsoft Windows ME
- Microsoft Windows NT 4.0SP6a 详细描述
目前流行的浏览器设计中,在某一帧中的站点或者域中可执行脚本代码不能访问
其他的站点或者域中的上下问内容,这是被称为'相同起源策略'的安全功能,防
止恶意站点从在其他不同窗口的站点中交互或者偷取敏感信息。
MICROSOFT IE存在一个相关这保护特征的安全漏洞。
由于设计的缺陷允许其中之一域中的脚本访问在其他帧中的另一域中的上下文。
恶意用户可以通过使用脚本扩展在其他域中的帧内容,然后把内容发送会它们的
WEB站点,这可以导致攻击者查看用户本地系统上的文件或者在离开攻击者站点后
截获用户后来访问的第三方站点上的内容,有可能导致用户名密码,信用卡号等
信息泄露。
测试代码
尚无
解决方案
下载使用如下补丁程序:
Microsoft Internet Explorer 5.01:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
Microsoft Internet Explorer 5.0.1SP2:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
Microsoft Internet Explorer 5.0.1SP1:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
Microsoft Internet Explorer 5.5SP2:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
Microsoft Internet Explorer 5.5SP1:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
Microsoft Internet Explorer 5.5:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
Microsoft Internet Explorer 6.0:
Microsoft Patch Q318089
http://www.microsoft.com/windows/ie/downloads/critical/q318089/default.asp
相关信息
参考:http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS02-009.asp
|
