正文

AntiSniff DNS缓冲区溢出漏洞。

admin
admin V管理员 /0 评论 /5 阅读
1230
此篇文章发布距今已超过1231天,您需要注意文章的内容或图片是否可用!

漏洞信息详情

AntiSniff DNS缓冲区溢出漏洞。

  • CNNVD编号:CNNVD-200005-060
    • <!--
  • 危害等级: 超危-->
  • 危害等级: 超危
  • CVE编号: CVE-2000-0405
  • 漏洞类型: 缓冲区溢出
  • 发布时间: 2000-05-16
  • 威胁类型: 远程
  • 更新时间: 2005-05-02
  • 厂        商: atstake
  • 漏洞来源: This problem was d...

漏洞简介

L0pht AntiSniff 存在缓冲区溢出漏洞,远程攻击者可以通过异常DNS响应包执行任意命令。

漏洞公告

Immediate Solution: Do not run the DNS tests on AntiSniff version 1.01 or the Researchers version 1.0. Download the newer version from http://www.l0pht.com/antisniff which are labeled AntiSniff version 1.02 for the commercial instance and AntiSniff version 1-1 for the researchers instance. @Stake AntiSniff - Researchers Version 1.0

  • @Stake Inc. Researchers Version Upgrade http://www.l0pht.com/antisniff/dist/anti_sniff_researchv1-1.tar.gz
@Stake AntiSniff 1.0.1
  • @Stake Inc. Version 1.02 AntiSniff - Windows version http://www.l0pht.com/antisniff/dist/as-102.zip

参考网址

来源: L0PHT 名称: 20000515 AntiSniff version 1.01 and Researchers version 1 DNS overflow 链接:http://www.l0pht.com/advisories/asniff_advisory.txt 来源: BID 名称: 1207 链接:http://www.securityfocus.com/bid/1207 来源: OSVDB 名称: 3179 链接:http://www.osvdb.org/3179

受影响实体

  • Atstake Antisniff:1.0.1  
    <!--
    2000-1-1
    -->
  • Atstake Antisniff:1.0:Researchers  
    <!--
    2000-1-1
    -->

补丁

    暂无