Microsoft Windows Kernel消息处理缓冲区溢出漏洞发布时间:2003-04-16 更新时间:2003-04-17 严重程度:高 威胁程度:本地管理员权限 错误类型:边界检查错误 利用方式:服务器模式 BUGTRAQ ID:7370 CVE(CAN) ID:CAN-2003-0112 受影响系统 Microsoft Windows 2000 Advanced Server SP3详细描述 Entercept's Ricochet Team发现Microsoft windows内核(ntoskrnl.exe)存在基于堆栈的缓冲区溢出。此漏洞存在于Windows NT 4.0, Windows 2000,和Windows XP中。 漏洞存在于内核负责处理调试的部分代码,LpcRequestWaitReplyPort(),这个从内核中调用,但不切当的信任用户进程报告给传递给内核消息的大小,即没有对报告的大小进行任何检查,通过利用这个漏洞,攻击者可以以操作系统权限执行任意代码。更详细的技术资料请查看: http://www.entercept.com/news/uspr/04-16-03.asp 测试代码 尚无 解决方案 补丁下载: Microsoft Windows 2000 Professional SP3: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Server SP3: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Advanced Server SP3: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Terminal Services SP3: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Datacenter Server SP3: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Advanced Server SP2: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Datacenter Server SP2: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Professional SP2: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Server SP2: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows 2000 Terminal Services SP2: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=CACAC8C0-81E9-413E-B565-5D7B3257A733&displaylang=en All except Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=81E6E80C-5E56-4466-98C1-4DDF6CF3893F&displaylang=ja Japanese NEC Microsoft Windows XP Home SP1: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=9F81E615-3DEC-4A4B-826A-4E0FEAB42323&displaylang=en Microsoft Windows XP Professional SP1: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=9F81E615-3DEC-4A4B-826A-4E0FEAB42323&displaylang=en Microsoft Windows XP 64-bit Edition SP1: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=DBC47904-51C8-475A-9900-3DF363A51A3A&displaylang=en Microsoft Windows XP 64-bit Edition : Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=DBC47904-51C8-475A-9900-3DF363A51A3A&displaylang=en Microsoft Windows XP Professional : Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=9F81E615-3DEC-4A4B-826A-4E0FEAB42323&displaylang=en Microsoft Windows XP Home : Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=9F81E615-3DEC-4A4B-826A-4E0FEAB42323&displaylang=en Microsoft Windows NT Enterprise Server 4.0 SP6a: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=C3596ED1-596F-416C-8BE5-91AE65619A1A&displaylang=en All except Japanese NEC and Chinese - Hong Kong Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=6D83F8BA-BF16-4EC5-9187-9B03E9AE825F&displaylang=ja Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=0FF5C348-F7A0-44E8-8D82-557389FB4590&displaylang=zh-tw Chinese - Hong Kong Microsoft Windows NT Server 4.0 SP6a: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=C3596ED1-596F-416C-8BE5-91AE65619A1A&displaylang=en All except Japanese NEC and Chinese - Hong Kong Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=6D83F8BA-BF16-4EC5-9187-9B03E9AE825F&displaylang=ja Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=0FF5C348-F7A0-44E8-8D82-557389FB4590&displaylang=zh-tw Chinese - Hong Kong Microsoft Windows NT Terminal Server 4.0 SP6a: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=910A0015-3723-4A4E-9049-99A4CE52B5F8&displaylang=en Microsoft Windows NT Workstation 4.0 SP6a: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=C3596ED1-596F-416C-8BE5-91AE65619A1A&displaylang=en All except Japanese NEC and Chinese - Hong Kong Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=6D83F8BA-BF16-4EC5-9187-9B03E9AE825F&displaylang=ja Japanese NEC Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=0FF5C348-F7A0-44E8-8D82-557389FB4590&displaylang=zh-tw Chinese - Hong Kong Microsoft Windows NT Terminal Server 4.0 SP6: Microsoft Patch Q811493 http://microsoft.com/downloads/details.aspx?FamilyId=910A0015-3723-4A4E-9049-99A4CE52B5F8&displaylang=en 相关信息 参考:http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-013.asp http://www.kb.cert.org/vuls/id/446338 http://www.entercept.com/news/uspr/04-16-03.asp |
