|
|
Canna Server拒绝服务漏洞
发布时间:2002-12-10
更新时间:2002-12-10
严重程度:高
威胁程度:远程拒绝服务
错误类型:输入验证错误
利用方式:服务器模式
BUGTRAQ ID:6354
CVE(CAN) ID:CAN-2002-1159
受影响系统Canna Canna 3.5 b2
-RedHat Linux 7.1
-RedHat Linux 7.2
-RedHat Linux 7.3
-RedHat Linux 8.0 详细描述
Canna server存在一个漏洞。由于对输入请求检查不足,远程攻击者可能利用这个漏洞进行拒绝服务攻击,在一些情况下可能泄漏系统信息。
目前还没有该漏洞的技术细节。
测试代码
无
解决方案
Canna Canna 3.5 b2:
RedHat RPM Canna-3.5b2-42.7.1.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/Canna-3.5b2-42.7.1.alpha.rpm
RedHat RPM Canna-3.5b2-42.7.1.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/Canna-3.5b2-42.7.1.i386.rpm
RedHat RPM Canna-3.5b2-42.7.1.ia64.rpm
ftp://updates.redhat.com/7.1/en/os/ia64/Canna-3.5b2-42.7.1.ia64.rpm
RedHat RPM Canna-3.5b2-50.7.2.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/Canna-3.5b2-50.7.2.i386.rpm
RedHat RPM Canna-3.5b2-50.7.2.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/Canna-3.5b2-50.7.2.ia64.rpm
RedHat RPM Canna-3.5b2-62.7.3.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/Canna-3.5b2-62.7.3.i386.rpm
RedHat RPM Canna-3.5b2-70.8.0.1.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/Canna-3.5b2-70.8.0.1.i386.rpm
RedHat RPM Canna-devel-3.5b2-42.7.1.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/Canna-devel-3.5b2-42.7.1.alpha.rpm
RedHat RPM Canna-devel-3.5b2-42.7.1.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/Canna-devel-3.5b2-42.7.1.i386.rpm
RedHat RPM Canna-devel-3.5b2-42.7.1.ia64.rpm
ftp://updates.redhat.com/7.1/en/os/ia64/Canna-devel-3.5b2-42.7.1.ia64.rpm
RedHat RPM Canna-devel-3.5b2-50.7.2.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/Canna-devel-3.5b2-50.7.2.i386.rpm
RedHat RPM Canna-devel-3.5b2-50.7.2.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/Canna-devel-3.5b2-50.7.2.ia64.rpm
RedHat RPM Canna-devel-3.5b2-62.7.3.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/Canna-devel-3.5b2-62.7.3.i386.rpm
RedHat RPM Canna-devel-3.5b2-70.8.0.1.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/Canna-devel-3.5b2-70.8.0.1.i386.rpm
RedHat RPM Canna-libs-3.5b2-42.7.1.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/Canna-libs-3.5b2-42.7.1.alpha.rpm
RedHat RPM Canna-libs-3.5b2-42.7.1.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/Canna-libs-3.5b2-42.7.1.i386.rpm
RedHat RPM Canna-libs-3.5b2-42.7.1.ia64.rpm
ftp://updates.redhat.com/7.1/en/os/ia64/Canna-libs-3.5b2-42.7.1.ia64.rpm
RedHat RPM Canna-libs-3.5b2-50.7.2.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/Canna-libs-3.5b2-50.7.2.i386.rpm
RedHat RPM Canna-libs-3.5b2-50.7.2.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/Canna-libs-3.5b2-50.7.2.ia64.rpm
RedHat RPM Canna-libs-3.5b2-62.7.3.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/Canna-libs-3.5b2-62.7.3.i386.rpm
RedHat RPM Canna-libs-3.5b2-70.8.0.1.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/Canna-libs-3.5b2-70.8.0.1.i386.rpm
相关信息
发现者:hsj 和 AIDA Shinra
相关资料:http://online.securityfocus.com/advisories/4759
|
