Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:2285
HistoryOct 12, 2007 - 12:00 a.m.

Microsoft Windows柯达图像查看器远程代码执行漏洞(MS07-055)

2007-10-1200:00:00
Root
www.seebug.org
12

0.963 High

EPSS

Percentile

99.4%

JSON

BUGTRAQ ID: 25909
CVE(CAN) ID: CVE-2007-2217

Microsoft Windows是微软发布的非常流行的操作系统。

Windows中的柯达图像查看器处理特制图像文件的方式中存在内存破坏漏洞,远程攻击者可能利用此漏洞通过诱使用户处理畸形数据控制用户系统。

攻击者可以通过构建特制图像来利用此漏洞,如果用户访问网站、查看特制电子邮件或者打开电子邮件附件,该漏洞可能允许远程执行指令。成功利用此漏洞的攻击者可以完全控制受影响的系统。

Microsoft Windows XP SP2
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows 2000SP4
临时解决方法:

  • 以纯文本格式阅读电子邮件可帮助保护您自己免受来自HTML电子邮件攻击媒介的攻击。

  • 修改oieng400.dll上的访问控制列表:

    1. 以拥有管理员特权的用户身份登录。

    2. 单击“开始”,单击“运行”,键入cmd,然后单击“确定”。

    3. 记下文件上的当前 ACL(包括继承设置),以便将来必须撤消此修改时作为参考。要查看ACL,请键入以下内容:
      cacls “C:\winnt\system32\oieng400.dll”

    4. 要拒绝“everyone”组访问该文件,请在命令提示符处键入以下内容:
      cacls “C:\winnt\system32\oieng400.dll” /E /D Everyone

厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS07-055)以及相应补丁:
MS07-055:Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution (923810)
链接:<a href=“http://www.microsoft.com/technet/security/Bulletin/MS07-055.mspx?pf=true” target=“_blank”>http://www.microsoft.com/technet/security/Bulletin/MS07-055.mspx?pf=true</a>

Related

checkpoint_advisories 3
saint 4
cvelist 1
prion 1
d2 1
securityvulns 2
nessus 1
cert 1
cve 1
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Kodak Image Viewer Code Execution (MS07-055; CVE-2007-2217)
2010-01-04 00:00:00
Microsoft Windows Kodak Image Viewer Code Execution (MS07-055) - ver 2 (CVE-2007-2217)
2014-08-19 00:00:00
Update Protection against Microsoft Windows Kodak Image Viewer Code Execution Vulnerability (MS07-055)
2007-10-28 00:00:00
saint
saint
Kodak Image Viewer TIFF image handling vulnerability
2007-10-15 00:00:00
Kodak Image Viewer TIFF image handling vulnerability
2007-10-15 00:00:00
Kodak Image Viewer TIFF image handling vulnerability
2007-10-15 00:00:00
cvelist
cvelist
CVE-2007-2217
2007-10-09 22:00:00
prion
prion
Memory corruption
2007-10-09 22:17:00
d2
d2
DSquare Exploit Pack: D2SEC_MS07_055
2007-10-09 22:17:00
securityvulns
securityvulns
Kodak Image Viewer memory corruption
2007-10-10 00:00:00
Microsoft Security Bulletin MS07-055 - Critical Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution &#40;923810&#41;
2007-10-10 00:00:00
nessus
nessus
MS07-055: Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution (923810)
2007-10-09 00:00:00
cert
cert
Microsoft Kodak Image Viewer code execution vulnerability
2007-10-30 00:00:00
cve
cve
CVE-2007-2217
2007-10-09 22:17:00

0.963 High

EPSS

Percentile

99.4%

JSON
Related for SSV:2285
checkpoint_advisories3saint4cvelist1prion1d21securityvulns2nessus1cert1cve1