漏洞信息详情
Microsoft Windows HSC DVD Driver升级代码执行漏洞(MS04-015)
- CNNVD编号:CNNVD-200406-046
- 危害等级: 中危
![图片[1]-Microsoft Windows HSC DVD Driver升级代码执行漏洞(MS04-015)-一一网](https://www.proyy.com/skycj/data/images/2021-05-17/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2004-0199
- 漏洞类型:
输入验证
- 发布时间:
2004-05-11
- 威胁类型:
远程
- 更新时间:
2005-10-20
- 厂 商:
microsoft - 漏洞来源:
Donnie Werner※ mor… -
漏洞简介
Microsoft XP帮助支持中心(Help and Support Center)是一款统一的帮助和支持服务中心,可把所有的支持服务,如远程协助、自动更新、联机帮助以及其他工具等集中在一个地方。
Microsoft HSC在处理DVD驱动升级的URI时存在问题,远程攻击者可以利用这个漏洞以目标用户进程权限在系统上执行任意命令。
Microsoft HSC包含各种HTML和Javascript文件,可由HSC内部使用。HTML文件属于本地电脑安全域,用于执行外部帮助程序。
通过构建特殊的URL,攻击者可以使用户的本地机器启动和处理helpctr.exe,并传递注入的URL到应用程序,然后在支持帮助中心出现帮助和支持DvD升级对话框。
通过DvD升级页面,注入URL连接到\”upgrade now\”按钮,通过点击此功能,用户就会被提示打开/保存提供(攻击者)文件的对话框。这允许攻击者在HSC上初始化DvDupgrade操作,注如入的JavaScript代码会以这些HTML文件上下文运行,如\”HCP://system/DVDUpgrd/dvdupgrd.htm\”。通过这个方法,攻击者可以在本地电脑域中运行脚本,如下载启动恶意EXE程序。
漏洞公告
临时解决方法:
如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
* 在Windows注册表中删除如下键值:
HKEY_CLASSES_ROOT\HCP
厂商补丁:
Microsoft
———
Microsoft已经为此发布了一个安全公告(MS04-015)以及相应补丁:
MS04-015:Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374)
链接:http://www.microsoft.com/technet/security/bulletin/MS04-015.mspx” target=”_blank”>
http://www.microsoft.com/technet/security/bulletin/MS04-015.mspx
补丁下载:
Microsoft Windows XP Home SP1:
Microsoft Upgrade Security Update for Windows XP (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en
Microsoft Windows XP Professional SP1:
Microsoft Upgrade Security Update for Windows XP (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en
Microsoft Windows XP 64-bit Edition SP1:
Microsoft Upgrade Security Update for Windows XP 64 Bit Edition (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en
Microsoft Windows XP 64-bit Edition Version 2003 SP1:
Microsoft Upgrade Security Update for Windows XP 64 Bit Edition (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en
Microsoft Upgrade Security Update for Microsoft Windows Server 2003 and Windows XP 64 Bit Edition Vers 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=E05DE6AB-FB0D-4A0E-B34E-BB69B9D6BA74&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=E05DE6AB-FB0D-4A0E-B34E-BB69B9D6BA74&displaylang=en
Microsoft Upgrade Security Update for Windows XP 64 Bit Edition 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en
Microsoft Windows XP Professional :
Microsoft Upgrade Security Update for Windows XP (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en
Microsoft Windows XP Home :
Microsoft Upgrade Security Update for Windows XP (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=563F65A3-D793-47B4-A607-948CAA5B3454&displaylang=en
Microsoft Windows XP 64-bit Edition :
Microsoft Upgrade Security Update for Windows XP 64 Bit Edition (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en
Microsoft Windows Server 2003 Standard Edition :
Microsoft Upgrade Security Update for Windows Server 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=50AD42D7-81BD-4F96-9AD1-0E67310551DF&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=50AD42D7-81BD-4F96-9AD1-0E67310551DF&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition :
Microsoft Upgrade Security Update for Windows Server 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=50AD42D7-81BD-4F96-9AD1-0E67310551DF&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=50AD42D7-81BD-4F96-9AD1-0E67310551DF&displaylang=en
Microsoft Windows Server 2003 Web Edition :
Microsoft Upgrade Security Update for Windows Server 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=50AD42D7-81BD-4F96-9AD1-0E67310551DF&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=50AD42D7-81BD-4F96-9AD1-0E67310551DF&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition 64-bit :
Microsoft Upgrade Security Update for Microsoft Windows Server 2003 and Windows XP 64 Bit Edition Vers 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=E05DE6AB-FB0D-4A0E-B34E-BB69B9D6BA74&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=E05DE6AB-FB0D-4A0E-B34E-BB69B9D6BA74&displaylang=en
Microsoft Windows XP 64-bit Edition Version 2003 :
Microsoft Upgrade Security Update for Windows XP 64 Bit Edition (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en
Microsoft Upgrade Security Update for Microsoft Windows Server 2003 and Windows XP 64 Bit Edition Vers 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=E05DE6AB-FB0D-4A0E-B34E-BB69B9D6BA74&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=E05DE6AB-FB0D-4A0E-B34E-BB69B9D6BA74&displaylang=en
Microsoft Upgrade Security Update for Windows XP 64 Bit Edition 2003 (KB840374)
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en” target=”_blank”>
http://www.microsoft.com/downloads/details.aspx?FamilyId=EB954F03-EFC6-45FA-B87C-E29135199DC9&displaylang=en
参考网址
来源:US-CERT Vulnerability Note: VU#484814
名称: VU#484814
链接:http://www.kb.cert.org/vuls/id/484814
来源: XF
名称: win-hcp-code-execution(16095)
链接:http://xforce.iss.net/xforce/xfdb/16095
来源: BID
名称: 10321
链接:http://www.securityfocus.com/bid/10321
来源: MS
名称: MS04-015
链接:http://www.microsoft.com/technet/security/bulletin/MS04-015.mspx
来源: BUGTRAQ
名称: 20040512 MS04-015 – Windows Help Center – Dvdupgrade
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=108437759930820&w=2
来源: www.exploitlabs.com
链接:http://www.exploitlabs.com/files/advisories/EXPL-A-2004-001-helpctr.txt
来源: FULLDISC
名称: 20040512 MS04-015 – Windows Help Center – Dvdupgrade
链接:http://marc.theaimsgroup.com/?l=full-disclosure&m=108430407801825&w=2
来源: US Government Resource: oval:org.mitre.oval:def:1032
名称: oval:org.mitre.oval:def:1032
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1032
来源: US Government Resource: oval:org.mitre.oval:def:1008
名称: oval:org.mitre.oval:def:1008
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1008
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
