|
|
多个浏览器处理宽度为零的GIF图片可导致内存破坏
发布时间:2002-09-11
更新时间:2002-09-11
严重程度:中
威胁程度:远程拒绝服务
错误类型:边界检查错误
利用方式:服务器模式
BUGTRAQ ID:5665
受影响系统Mozilla Browser 0.9.5
- Apple MacOS 9.0
- Apple MacOS 9.0.4
- Apple MacOS 9.1
- Apple MacOS 9.2
- Apple MacOS 9.2.1
- Apple MacOS X 10.0
- Apple MacOS X 10.0.1
- Apple MacOS X 10.0.2
- Apple MacOS X 10.0.3
- Apple MacOS X 10.0.4
- Apple MacOS X 10.1
- Apple MacOS X 10.1.1
- Apple MacOS X 10.1.2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows XP
Mozilla Browser 0.9.6
- Apple MacOS 9.0
- Apple MacOS 9.1
- Apple MacOS 9.2
- Be BeOS 5.0
- BSDI BSD/OS 4.2
- Compaq OpenVMS 7.1 -2 Alpha
- Compaq OpenVMS 7.2 -2 Alpha
- Compaq OpenVMS 7.3 Alpha
- FreeBSD FreeBSD 4.0
- IBM AIX 4.3.3
- Microsoft Windows 2000 Workstation
- Microsoft Windows 2000 Workstation SP1
- Microsoft Windows 2000 Workstation SP2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP6a
- RedHat Linux 6.0
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 7.0 alpha
- RedHat Linux 7.0 i386
- RedHat Linux 7.0 sparc
- SGI IRIX 6.5
- Sun Solaris 2.7
- Sun Solaris 2.8
Mozilla Browser 0.9.7
- Apple MacOS 9.0
- Apple MacOS 9.0.4
- Apple MacOS 9.1
- Apple MacOS 9.2
- Apple MacOS 9.2.1
- Apple MacOS X 10.0
- Apple MacOS X 10.0.1
- Apple MacOS X 10.0.2
- Apple MacOS X 10.0.3
- Apple MacOS X 10.0.4
- Apple MacOS X 10.1
- Apple MacOS X 10.1.1
- Apple MacOS X 10.1.2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows XP
Mozilla Browser 0.9.8
- Apple MacOS 9.0
- Apple MacOS 9.0.4
- Apple MacOS 9.1
- Apple MacOS 9.2
- Apple MacOS 9.2.1
- Apple MacOS 9.2.2
- Apple MacOS X 10.0
- Apple MacOS X 10.0.1
- Apple MacOS X 10.0.2
- Apple MacOS X 10.0.3
- Apple MacOS X 10.0.4
- Apple MacOS X 10.1
- Apple MacOS X 10.1
- Apple MacOS X 10.1.1
- Apple MacOS X 10.1.2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows XP
Mozilla Browser 0.9.9
- FreeBSD FreeBSD 4.1.1
- FreeBSD FreeBSD 4.2
- FreeBSD FreeBSD 4.3
- FreeBSD FreeBSD 4.4
- FreeBSD FreeBSD 4.5
+ RedHat Linux 7.2
+ RedHat Linux 7.2 i386
+ RedHat Linux 7.2 i586
+ RedHat Linux 7.2 i686
+ RedHat Linux 7.3
+ RedHat Linux 7.3 i386
Mozilla Browser 1.0
Netscape Netscape 6.2
- Apple MacOS 9.0
- Apple MacOS 9.0.4
- Apple MacOS 9.1
- Apple MacOS 9.2
- Apple MacOS 9.2.1
- Apple MacOS X 10.0
- Apple MacOS X 10.0.1
- Apple MacOS X 10.0.2
- Apple MacOS X 10.0.3
- Apple MacOS X 10.0.4
- Apple MacOS X 10.1
- Apple MacOS X 10.1.1
- Apple MacOS X 10.1.2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows XP
Netscape Netscape 6.2.1
- Apple MacOS 9.0
- Apple MacOS 9.0.4
- Apple MacOS 9.1
- Apple MacOS 9.2
- Apple MacOS 9.2.1
- Apple MacOS X 10.0
- Apple MacOS X 10.0.1
- Apple MacOS X 10.0.2
- Apple MacOS X 10.0.3
- Apple MacOS X 10.0.4
- Apple MacOS X 10.1
- Apple MacOS X 10.1.1
- Apple MacOS X 10.1.2
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows XP
Netscape Netscape 6.2.2
Netscape Netscape 6.2.3
Opera Software Opera Web Browser 5.12
Opera Software Opera Web Browser 6.0
Opera Software Opera Web Browser 6.0.1 详细描述
多个WEB浏览器当处理宽度设置为零的GIF图象时可导致内存破坏,包括Netscape, Mozilla和Opera等浏览器,其他浏览器也存在这个漏洞。
这个漏洞可以导致拒绝服务或者执行任意代码。
由于多个浏览器存在问题,漏洞可能存在于处理GIF图象的库中如(libungif),不过不确定。
测试代码
演示参考地址:
http://crash.ihug.co.nz/~Sneuro/zerogif/
解决方案
关闭对某些图片的自动下载功能。
升级程序:
Mozilla Browser 0.9.5:
Mozilla Upgrade Mozilla 1.1
http://www.mozilla.org/releases/
Mozilla Browser 0.9.6:
Mozilla Upgrade Mozilla 1.1
http://www.mozilla.org/releases/
Mozilla Browser 0.9.7:
Mozilla Upgrade Mozilla 1.1
http://www.mozilla.org/releases/
Mozilla Browser 0.9.8:
Mozilla Upgrade Mozilla 1.1
http://www.mozilla.org/releases/
Mozilla Browser 0.9.9:
Mozilla Upgrade Mozilla 1.1
http://www.mozilla.org/releases/
Mozilla Browser 1.0:
Mozilla Upgrade Mozilla 1.1
http://www.mozilla.org/releases/
Netscape Netscape 6.2:
Netscape Upgrade Netscape 7.0
http://channels.netscape.com/ns/browsers/download.jsp
Netscape Netscape 6.2.1:
Netscape Upgrade Netscape 7.0
http://channels.netscape.com/ns/browsers/download.jsp
Netscape Netscape 6.2.2:
Netscape Upgrade Netscape 7.0
http://channels.netscape.com/ns/browsers/download.jsp
Netscape Netscape 6.2.3:
Netscape Upgrade Netscape 7.0
http://channels.netscape.com/ns/browsers/download.jsp
相关信息
zen-parse <zen-parse@gmx.net>.
参考:http://online.securityfocus.com/archive/1/290699
|
