漏洞信息详情
Microsoft OLE和COM远程缓冲区溢出漏洞
- CNNVD编号:CNNVD-200505-502
- 危害等级: 高危
![图片[1]-Microsoft OLE和COM远程缓冲区溢出漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-05-26/bbdd3e8868c10d22861b2275d65f4500.png)
- CVE编号:
CVE-2005-0047
- 漏洞类型:
访问验证错误
- 发布时间:
2005-02-08
- 威胁类型:
本地
- 更新时间:
2005-10-20
- 厂 商:
microsoft - 漏洞来源:
Cesar Cerrudo ces… -
漏洞简介
Microsoft COM提供多个对象存储在一个文档中;使用Microsoft OLE技术,应用程序可提供嵌入和链接支持。
Microsoft COM和OLE存在安全问题,本地或远程攻击者可以利用这个漏洞提升特权及执行任意指令。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Microsoft Windows XP Media Center Edition SP2
Microsoft Security Update for Windows XP (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A0E59D77-8AC1 -4AC0-9572-A7E1C2E4A66A&displaylang=en
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Security Update for Windows Server 2003 (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=83B97ECE-0010 -443E-9353-82FFCAF73771&displaylang=en
Microsoft Windows XP 64-bit Edition SP1
Microsoft Security Update for XP 64-Bit Edition Service Pack 1 (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=F80EABC3-6D39 -4532-9178-7967626977EE&displaylang=en
Microsoft Windows 2000 Advanced Server SP4
Microsoft Security Update for Windows 2000 (873333)
http://www.microsoft.com/downloads/details.aspx?familyid=84B4F65E-39D5 -4521-B692-051F76F2492E&displaylang=en
Microsoft Windows 2000 Professional SP3
Microsoft Security Update for Windows 2000 (873333)
http://www.microsoft.com/downloads/details.aspx?familyid=84B4F65E-39D5 -4521-B692-051F76F2492E&displaylang=en
Microsoft Windows XP Tablet PC Edition SP1
Microsoft Security Update for Windows XP (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A0E59D77-8AC1 -4AC0-9572-A7E1C2E4A66A&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Security Update for Windows Server 2003 (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=83B97ECE-0010 -443E-9353-82FFCAF73771&displaylang=en
Microsoft Windows XP Home SP2
Microsoft Security Update for Windows XP (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A0E59D77-8AC1 -4AC0-9572-A7E1C2E4A66A&displaylang=en
Microsoft Windows 2000 Datacenter Server SP4
Microsoft Security Update for Windows 2000 (873333)
http://www.microsoft.com/downloads/details.aspx?familyid=84B4F65E-39D5 -4521-B692-051F76F2492E&displaylang=en
Microsoft Windows XP Tablet PC Edition SP2
Microsoft Security Update for Windows XP (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A0E59D77-8AC1 -4AC0-9572-A7E1C2E4A66A&displaylang=en
Microsoft Windows XP Media Center Edition SP1
Microsoft Security Update for Windows XP (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A0E59D77-8AC1 -4AC0-9572-A7E1C2E4A66A&displaylang=en
Microsoft Windows Server 2003 Web Edition
Microsoft Security Update for Windows Server 2003 (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=83B97ECE-0010 -443E-9353-82FFCAF73771&displaylang=en
Microsoft Windows 2000 Advanced Server SP3
Microsoft Security Update for Windows 2000 (873333)
http://www.microsoft.com/downloads/details.aspx?familyid=84B4F65E-39D5 -4521-B692-051F76F2492E&displaylang=en
Microsoft Windows XP Home SP1
Microsoft Security Update for Windows XP (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A0E59D77-8AC1 -4AC0-9572-A7E1C2E4A66A&displaylang=en
Microsoft Windows 2000 Datacenter Server SP3
Microsoft Security Update for Windows 2000 (873333)
http://www.microsoft.com/downloads/details.aspx?familyid=84B4F65E-39D5 -4521-B692-051F76F2492E&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition Itanium 0
Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A2C9E842-551C -458E-BF19-1C2BA9F21A06&displaylang=en
Microsoft Windows 2000 Server SP3
Microsoft Security Update for Windows 2000 (873333)
http://www.microsoft.com/downloads/details.aspx?familyid=84B4F65E-39D5 -4521-B692-051F76F2492E&displaylang=en
Microsoft Windows Server 2003 Standard Edition
Microsoft Security Update for Windows Server 2003 (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=83B97ECE-0010 -443E-9353-82FFCAF73771&displaylang=en
Microsoft Windows XP 64-bit Edition Version 2003
Microsoft Security Update for XP 64-Bit Edition Version 2003 (KB873333)
http://www.microsoft.com/downloads/details.aspx?familyid=A2C9E8
参考网址
来源:US-CERT
名称: TA05-039A
链接:http://www.us-cert.gov/cas/techalerts/TA05-039A.html
来源: US-CERT
名称: VU#597889
链接:http://www.kb.cert.org/vuls/id/597889
来源: MS
名称: MS05-012
链接:http://www.microsoft.com/technet/security/bulletin/ms05-012.mspx
来源: XF
名称: win-com-gain-privileges(19105)
链接:http://xforce.iss.net/xforce/xfdb/19105
来源: MISC
链接:http://www.argeniss.com/research/SSExploit.c
来源: BUGTRAQ
名称: 20050530 [Argeniss] MS05-012 Exploit
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=111755870828817&w=2
来源: US Government Resource: oval:org.mitre.oval:def:901
名称: oval:org.mitre.oval:def:901
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:901
来源: US Government Resource: oval:org.mitre.oval:def:2892
名称: oval:org.mitre.oval:def:2892
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2892
来源: US Government Resource: oval:org.mitre.oval:def:2351
名称: oval:org.mitre.oval:def:2351
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2351
来源: US Government Resource: oval:org.mitre.oval:def:1159
名称: oval:org.mitre.oval:def:1159
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1159
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
