Microsoft Windows Help机制存在漏洞发布时间:2002-10-09 更新时间:2002-10-09 严重程度:高 威胁程度:远程管理员权限 错误类型:边界检查错误 利用方式:客户机模式 BUGTRAQ ID:5872 受影响系统 Microsoft Windows 2000 Advanced Server SP3详细描述 Microsoft报告了在其WINDOWS HELP机制中存在2个漏洞。 第一个漏洞存在于一个函数相关的ActiveX控件中,攻击者可以通过恶意WEB页或者HTML邮件调用和利用这个控件。利用这个漏洞可以导致缓冲溢出,以用户权利执行任意代码。 第二个漏洞牵涉到Compiled Help Files (chm),允许攻击者在目标主机上执行任意命令。帮助机制组件会在INTERNET临时文件目录中执行这些恶意.CHM文件。 测试代码 无 解决方案 补丁下载: Microsoft Windows 2000 Professional SP3: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Server SP3: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Advanced Server SP3: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Terminal Services SP3: Microsoft Windows 2000 Advanced Server SP2: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Professional SP2: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Server SP2: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Terminal Services SP2: Microsoft Windows 2000 Terminal Services SP1: Microsoft Windows 98 SP1: Microsoft Windows 2000 Server SP1: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Professional SP1: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Advanced Server SP1: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows XP Home SP1: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=41834 Microsoft Windows XP Professional SP1: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=41834 Microsoft Windows XP 64-bit Edition SP1: Microsoft Windows 98 j: Microsoft Windows 98 b: Microsoft Windows 98 a: Microsoft Windows XP : Microsoft Windows XP Professional : Microsoft Windows XP Home : Microsoft Windows 98SE : Microsoft Patch Q323255 http://www.microsoft.com/windows98/downloads/contents/WUCritical/q323255/default.asp Microsoft Windows 98 : Microsoft Patch Q323255 http://www.microsoft.com/windows98/downloads/contents/WUCritical/q323255/default.asp Microsoft Windows ME : Microsoft Windows 2000 Server : Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Advanced Server : Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Professional : Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=40213 Microsoft Windows 2000 Terminal Services : Microsoft Windows XP 64-bit Edition : Microsoft Windows NT Workstation 4.0 SP6a: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=43308 Microsoft Windows NT Terminal Server 4.0 SP6a: Microsoft Patch Q323255 http://www.microsoft.com/Downloads/Release.asp?ReleaseID=43308 相关信息 David Litchfield of Next Generation Security Software Ltd. and Thor Larholm of PivX Solutions. 参考:http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms02-055.asp |
