标题: WINDOWS向量图引擎处理图片时的漏洞 [打印本页]

---

作者: pioneer     时间: 2007-8-16 09:58    标题: WINDOWS向量图引擎处理图片时的漏洞

来源

secunia.com

操作系统

Microsoft Windows 2000 Advanced Server

Microsoft Windows 2000 Datacenter Server

Microsoft Windows 2000 Professional

Microsoft Windows 2000 Server

Microsoft Windows XP Home Edition

Microsoft Windows XP Professional

Microsoft Windows Server 2003 Datacenter Edition

Microsoft Windows Server 2003 Enterprise Edition

Microsoft Windows Server 2003 Standard Edition

Microsoft Windows Server 2003 Web Edition

Microsoft Windows Storage Server 2003

描述

这可潜在的被恶意用来危害用户系统。
由向量图引擎在转换图片时的越界错误引起这个漏洞。执行成功后允许例如如何用户在e-mail中打开一个特定附件后执行任意代码

解决方案

应用补丁
Windows 2000 SP4:
http://www.microsoft.com/downloa ... 9-835c-caa00cf086b9

Windows XP SP2:
http://www.microsoft.com/downloa ... 5-8dd6-4ca1cac32315

Windows XP Professional x64 Edition:
http://www.microsoft.com/downloa ... 9-b2d9-45144230d512

Windows Server 2003 SP1:
http://www.microsoft.com/downloa ... 5-bca8-598d6b98b8b3

Windows Server 2003 x64 Edition:
http://www.microsoft.com/downloa ... f-b896-3bda39f69f7e

Windows Server 2003 with SP1 for Itanium-based systems:
http://www.microsoft.com/downloa ... 7-a340-ed096f180b2b

---

欢迎光临 微点交流论坛 (http://bbs.micropoint.com.cn/)

bbs.micropoint.com.cn