|
|
Netscape Communicator type=password浏览器缓冲区溢出漏洞
发布时间:2003-01-15
更新时间:2003-01-15
严重程度:高
威胁程度:本地拒绝服务
错误类型:边界检查错误
利用方式:服务器模式
BUGTRAQ ID:1726
受影响系统Netscape Communicator 4.0
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 3.0
-Conectiva Linux 4.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-MandrakeSoft Linux Mandrake 6.0
-MandrakeSoft Linux Mandrake 6.1
-MandrakeSoft Linux Mandrake 7.0
-MandrakeSoft Linux Mandrake 7.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.5
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.6
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.7
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-FreeBSD FreeBSD 4.0
-FreeBSD FreeBSD 4.1
-FreeBSD FreeBSD 4.1.1
-FreeBSD FreeBSD 4.2
-FreeBSD FreeBSD 4.3
-FreeBSD FreeBSD 4.4
-FreeBSD FreeBSD 4.5
-Microsoft Windows 2000 Workstation
-Microsoft Windows 2000 Workstation SP1
-Microsoft Windows 2000 Workstation SP2
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-Microsoft Windows NT 4.0 SP1
-Microsoft Windows NT 4.0 SP2
-Microsoft Windows NT 4.0 SP3
-Microsoft Windows NT 4.0 SP4
-Microsoft Windows NT 4.0 SP5
-Microsoft Windows NT 4.0 SP6
-Microsoft Windows NT 4.0 SP6a
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.51
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.61
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.72
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 4.0
-Conectiva Linux 4.0 es
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-MandrakeSoft Linux Mandrake 6.0
-MandrakeSoft Linux Mandrake 6.1
-MandrakeSoft Linux Mandrake 7.0
-MandrakeSoft Linux Mandrake 7.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 2000 Workstation SP1
-Microsoft Windows 2000 Workstation SP2
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-Microsoft Windows NT 4.0 SP1
-Microsoft Windows NT 4.0 SP2
-Microsoft Windows NT 4.0 SP3
-Microsoft Windows NT 4.0 SP4
-Microsoft Windows NT 4.0 SP5
-Microsoft Windows NT 4.0 SP6
-Microsoft Windows NT 4.0 SP6a
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.74
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 3.0
-Conectiva Linux 4.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-MandrakeSoft Linux Mandrake 6.0
-MandrakeSoft Linux Mandrake 6.1
-MandrakeSoft Linux Mandrake 7.0
-MandrakeSoft Linux Mandrake 7.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 2000 Workstation SP1
-Microsoft Windows 2000 Workstation SP2
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows 98SE
-Microsoft Windows NT 4.0
-Microsoft Windows NT 4.0 SP1
-Microsoft Windows NT 4.0 SP2
-Microsoft Windows NT 4.0 SP3
-Microsoft Windows NT 4.0 SP4
-Microsoft Windows NT 4.0 SP5
-Microsoft Windows NT 4.0 SP6
-Microsoft Windows NT 4.0 SP6a
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
Netscape Communicator 4.75
-Caldera OpenLinux Desktop 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 3.0
-Conectiva Linux 4.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-MandrakeSoft Linux Mandrake 6.0
-MandrakeSoft Linux Mandrake 6.1
-MandrakeSoft Linux Mandrake 7.0
-MandrakeSoft Linux Mandrake 7.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 2000 Workstation SP1
-Microsoft Windows 2000 Workstation SP2
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-Microsoft Windows NT 4.0 SP1
-Microsoft Windows NT 4.0 SP2
-Microsoft Windows NT 4.0 SP3
-Microsoft Windows NT 4.0 SP4
-Microsoft Windows NT 4.0 SP5
-Microsoft Windows NT 4.0 SP6
-Microsoft Windows NT 4.0 SP6a
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3
+SGI IRIX 6.5.11
+SGI IRIX 6.5.12
Netscape Communicator 4.76
-Caldera OpenLinux 2.3
-Caldera OpenLinux eBuilder 3.0
-Conectiva Linux 3.0
-Conectiva Linux 4.0
-Conectiva Linux 4.1
-Conectiva Linux 4.2
-Conectiva Linux 5.0
-Conectiva Linux 5.1
-MandrakeSoft Linux Mandrake 6.0
-MandrakeSoft Linux Mandrake 6.1
-MandrakeSoft Linux Mandrake 7.0
-MandrakeSoft Linux Mandrake 7.1
-Microsoft Windows 2000 Workstation
-Microsoft Windows 2000 Workstation SP1
-Microsoft Windows 2000 Workstation SP2
-Microsoft Windows 95
-Microsoft Windows 98
-Microsoft Windows NT 4.0
-Microsoft Windows NT 4.0 SP1
-Microsoft Windows NT 4.0 SP2
-Microsoft Windows NT 4.0 SP3
-Microsoft Windows NT 4.0 SP4
-Microsoft Windows NT 4.0 SP5
-Microsoft Windows NT 4.0 SP6
-Microsoft Windows NT 4.0 SP6a
-RedHat Linux 5.2 alpha
-RedHat Linux 5.2 i386
-RedHat Linux 5.2 sparc
-RedHat Linux 6.0
-RedHat Linux 6.0 alpha
-RedHat Linux 6.0 sparc
-RedHat Linux 6.1 alpha
-RedHat Linux 6.1 i386
-RedHat Linux 6.1 sparc
-RedHat Linux 6.2 alpha
-RedHat Linux 6.2 i386
-RedHat Linux 6.2 sparc
-S.u.S.E. Linux 7.0
-SCO eDesktop 2.4
-SCO eServer 2.3 详细描述
当查看一个含有带'type=password'参数的INPUT标记的HTML页面时可能会导致Netscape Communicator发生缓冲区溢出。
如下的表单页面会导致浏览器崩溃:
<FORM action=something method=something>
<INPUT type=password value=16_KB_character_string>
</FORM>
根据输入数据的不同,执行任意命令也是可能的,只有'password'这种类型存在问题。要恢复使用功能必须重启程序。
解决方案
升级Netscape Communicator到4.77及其以后版本:
http://www.netscape.com
相关信息
Michal Zalewski <lcamtuf@dione.ids.pl>
|
