首页 -> 安全研究
安全研究
安全漏洞
Microsoft FrontPage Server Extensions SmartHTML远程缓冲区溢出漏洞(MS02-053)
发布日期:2002-09-25
更新日期:2002-09-29
受影响系统:
Microsoft FrontPage Server Extensions 2000描述:
- Microsoft Windows XP Professional SP1
- Microsoft Windows XP Professional
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Home
- Microsoft Windows 2000 SP3
- Microsoft Windows 2000 Server SP3
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Datacenter Server SP3
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Advanced Server SP3
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
Microsoft FrontPage Server Extensions 2002
- Microsoft Windows XP Professional SP1
- Microsoft Windows XP Professional
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Home
- Microsoft Windows 2000 SP3
- Microsoft Windows 2000 Server SP3
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Datacenter Server SP3
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Advanced Server SP3
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
BUGTRAQ ID: 5804
CVE(CAN) ID: CVE-2002-0692
Microsoft FrontPage服务器扩展是Microsoft公司开发的用于加强IIS Web服务器的功能的软件包。
Microsoft FrontPage服务器扩展中的SmartHTML (shtml)解析器组件对用户提交的请求缺少正确过滤检查,远程攻击者可以利用这个漏洞进行拒绝服务攻击,可能以FrontPage进程权限在系统上执行任意指令。
SmartHTML (shtml)解析器是Microsoft FrontPage服务器扩展和Microsoft SharePoint Team Services中的一个组件,提供对WEB表单和其他基于FrontPage动态内容的支持。在处理特殊WEB文件类型请求时解析器存在一个漏洞,如果攻击者提交的特殊WEB文件类型请求中包含特殊字符,在FrontPage服务器扩展2000中,这类请求可导致解析器消耗大量或者全部CPU时间,直到WEB服务重新启动。而在FrontPage服务器扩展2002和SharePoint Team Services 2002系统上,相同类型的请求可导致缓冲区溢出,可能以FrontPage进程权限在系统上执行任意指令。
<*来源:Maninder Bharadwaj
链接:http://www.microsoft.com/technet/security/bulletin/MS02-053.asp
*>
建议:
临时解决方法:
如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁:
* 使用IIS Lockdown工具(http://www.microsoft.com/technet/security/tools/locktool.asp)关闭SmartHTMl解析器。
* IIS 4.0, 5.0和5.1 默认情况下安装FrontPage服务器扩展,如果不需要,反安装FrontPage服务器扩展。
厂商补丁:
Microsoft
---------
Microsoft已经为此发布了一个安全公告(MS02-053)以及相应补丁:
MS02-053:Buffer Overrun in SmartHTML Interpreter Could Allow Code Execution (Q324096)
链接:http://www.microsoft.com/technet/security/bulletin/MS02-053.asp
补丁下载:
* Microsoft FrontPage Server Extensions 2002 for all platforms
http://download.microsoft.com/download/FrontPage2002/fpse1002/1/W98NT42KMeXP/EN-US/fpse1002.exe
* Microsoft FrontPage Server Extension 2000 for NT4
http://download.microsoft.com/download/fp2000fd2000/Patch/1/W9XNT4Me/EN-US/fpse0901.exe
* Microsoft FrontPage Server Extensions 2000 for Windows XP
o http://www.microsoft.com/downloads/release.asp?ReleaseID=42995
o Windows Update
http://windowsupdate.microsoft.com/
* Microsoft FrontPage Server Extensions 2000 for Windows 2000
o http://www.microsoft.com/downloads/release.asp?ReleaseID=42954
o Windows Update
http://windowsupdate.microsoft.com/
浏览次数:4238
严重程度:0(网友投票)
绿盟科技给您安全的保障