|
|
Microsoft DirectShow MIDI文件类型缓冲区溢出漏洞
发布时间:2003-07-23
更新时间:2003-07-24
严重程度:高
威胁程度:普通用户访问权限
错误类型:边界检查错误
利用方式:客户机模式
BUGTRAQ ID:8262
CVE(CAN) ID:CAN-2003-0346
受影响系统Microsoft DirectX 5.2
+Microsoft Windows 98
Microsoft DirectX 6.1
+Microsoft Windows 98SE
Microsoft DirectX 7.0 a
+Microsoft Windows ME
Microsoft DirectX 7.0
+Microsoft Windows 2000 Advanced Server
+Microsoft Windows 2000 Advanced Server SP1
+Microsoft Windows 2000 Advanced Server SP2
+Microsoft Windows 2000 Advanced Server SP3
+Microsoft Windows 2000 Advanced Server SP4
+Microsoft Windows 2000 Datacenter Server
+Microsoft Windows 2000 Datacenter Server SP1
+Microsoft Windows 2000 Datacenter Server SP2
+Microsoft Windows 2000 Datacenter Server SP3
+Microsoft Windows 2000 Datacenter Server SP4
+Microsoft Windows 2000 Professional
+Microsoft Windows 2000 Professional SP1
+Microsoft Windows 2000 Professional SP2
+Microsoft Windows 2000 Professional SP3
+Microsoft Windows 2000 Professional SP4
+Microsoft Windows 2000 Server
+Microsoft Windows 2000 Server SP1
+Microsoft Windows 2000 Server SP2
+Microsoft Windows 2000 Server SP3
+Microsoft Windows 2000 Server SP4
Microsoft DirectX 8.1
Microsoft DirectX 9.0 a
+Microsoft Windows 2000 Advanced Server
+Microsoft Windows 2000 Advanced Server SP1
+Microsoft Windows 2000 Advanced Server SP2
+Microsoft Windows 2000 Advanced Server SP3
+Microsoft Windows 2000 Advanced Server SP4
+Microsoft Windows 2000 Datacenter Server
+Microsoft Windows 2000 Datacenter Server SP1
+Microsoft Windows 2000 Datacenter Server SP2
+Microsoft Windows 2000 Datacenter Server SP3
+Microsoft Windows 2000 Datacenter Server SP4
+Microsoft Windows 2000 Professional
+Microsoft Windows 2000 Professional SP1
+Microsoft Windows 2000 Professional SP2
+Microsoft Windows 2000 Professional SP3
+Microsoft Windows 2000 Professional SP4
+Microsoft Windows 2000 Server
+Microsoft Windows 2000 Server SP1
+Microsoft Windows 2000 Server SP2
+Microsoft Windows 2000 Server SP3
+Microsoft Windows 2000 Server SP4
+Microsoft Windows ME
+Microsoft Windows Server 2003 Datacenter Edition
+Microsoft Windows Server 2003 Datacenter Edition 64-bit
+Microsoft Windows Server 2003 Enterprise Edition
+Microsoft Windows Server 2003 Enterprise Edition 64-bit
+Microsoft Windows Server 2003 Standard Edition
+Microsoft Windows Server 2003 Web Edition
+Microsoft Windows XP 64-bit Edition
+Microsoft Windows XP 64-bit Edition SP1
+Microsoft Windows XP Home
+Microsoft Windows XP Home SP1
+Microsoft Windows XP Media Center Edition
+Microsoft Windows XP Professional
+Microsoft Windows XP Professional SP1 详细描述
Microsoft DirectX处理MIDI文件的实现上存在两个缓冲区溢出漏洞,攻击者可以通过构造畸形的MIDI文件引诱目标用户打开,此MIDI文件被打开时会导致缓冲区溢出的发生从而执行攻击者指定的任意代码。
解决方案
厂商已经提供了补丁:
http://microsoft.com/downloads/details.aspx?FamilyId=141D5F9E-07C1-62A-BAEF-5EAB5C851CF5&displaylang=en
相关信息
CERT Advisory CA-2003-18 Integer Overflows in Microsoft Windows DirectX MIDI Libary
http://www.cert.org/advisories/CA-2003-18.html
Microsoft Security Bulletin MS03-030
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-030.asp
Windows MIDI Decoder (QUARTZ.DLL) Heap Corruption
http://eeye.com/html/Research/Advisories/AD20030723.html
|
