漏洞信息详情
Authentium Command Antivirus 'odapi.dll'多个缓冲区溢出漏洞
漏洞简介
Authentium Command Antivirus是一款杀毒软件。
Authentium Command Antivirus的odapi.dll库所提供的多个ActiveX控件存在缓冲区溢出漏洞,如果用户受骗访问了恶意的web站点并向有漏洞的控件传送了超长参数的话,就可能触发这些溢出,导致执行任意指令。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接: 临时解决方法:
* 为以下CLSID设置kill bit:
{103CAE29-DB09-4F77-812B-FFC0C3BC91A1}
{1F22F6F1-FDC5-4C6D-9335-B6E31315FB1B}
{253A6409-6917-48EF-9CC7-9CB79FDA4169}
{50F3C8D1-E5E8-463D-A6E5-5A5966359538}
{567408B9-78B1-44DD-9CC2-7AC136C916C5}
{67EC8D27-C3CD-447E-9315-46A04DDB6C35}
{6D855303-A902-4608-8668-C177F80AB429}
{8EDDD996-E47F-4C59-8505-9FC570612FB6}
{A1962F85-324C-4751-83ED-27426F9F6E36}
{FED9DA10-9C9E-4AEB-B5B2-51C7ADC7A4DA}
或将以下文本保存为.REG文件并导入:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{103CAE29-DB09-4F77-812B-FFC0C3BC91A1}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{1F22F6F1-FDC5-4C6D-9335-B6E31315FB1B}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{253A6409-6917-48EF-9CC7-9CB79FDA4169}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{50F3C8D1-E5E8-463D-A6E5-5A5966359538}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{567408B9-78B1-44DD-9CC2-7AC136C916C5}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{67EC8D27-C3CD-447E-9315-46A04DDB6C35}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{6D855303-A902-4608-8668-C177F80AB429}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{8EDDD996-E47F-4C59-8505-9FC570612FB6}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A1962F85-324C-4751-83ED-27426F9F6E36}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{FED9DA10-9C9E-4AEB-B5B2-51C7ADC7A4DA}]
"Compatibility Flags"=dword:00000400
厂商补丁:
Authentium
----------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.authentium.com
参考网址
来源: VU#563401
名称: VU#563401
链接:http://www.kb.cert.org/vuls/id/563401
来源: OSVDB
名称: 36801
链接:http://osvdb.org/36801
来源: XF
名称: authentium-command-antivirus-activex-bo(34657)
链接:http://xforce.iss.net/xforce/xfdb/34657
来源: BID
名称: 24255
链接:http://www.securityfocus.com/bid/24255
来源: VUPEN
名称: ADV-2007-2019
链接:http://www.frsirt.com/english/advisories/2007/2019
来源: SECUNIA
名称: 25500
链接:http://secunia.com/advisories/25500
受影响实体
- Authentium Command_antivirus:4.93.7<!--2000-1-1-->
- Authentium Command_antivirus:4.93.6<!--2000-1-1-->
- Authentium Command_antivirus:4.93.5<!--2000-1-1-->
- Authentium Command_antivirus:4.93.4<!--2000-1-1-->
- Authentium Command_antivirus:4.93.3<!--2000-1-1-->
补丁
暂无
还没有评论,来说两句吧...