Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:148
HistoryOct 25, 2006 - 12:00 a.m.

Microsoft Windows XML核心服务XSLT缓冲区溢出漏洞(MS06-061)

2006-10-2500:00:00
Root
www.seebug.org
9
JSON

Microsoft Windows是微软发布的非常流行的操作系统。

Windows的XML核心服务在处理MSXML中可扩展样式表语言转换(XSLT)控件时存在字符串缓冲区溢出漏洞,成功利用此漏洞的攻击者可以完全控制受影响的系统。

攻击者可以通过建立恶意网页来利用此漏洞,如果用户访问该页面,即有可能允许远程执行指令。

Microsoft Office 2003 Service Pack 2
Microsoft Office 2003 Service Pack 1
Microsoft Windows XP SP2
Microsoft Windows XP SP1
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003
Microsoft Windows 2000SP4
Microsoft XML Core Services 6.0
Microsoft XML Core Services 4.0
Microsoft已经为此发布了一个安全公告(MS06-061)以及相应补丁:
MS06-061:Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (924191)
链接:http://www.microsoft.com/technet/security/Bulletin/MS06-061.mspx

JSON