Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:5048
HistoryApr 16, 2009 - 12:00 a.m.

Microsoft Wordpad Word 97转换器远程代码执行漏洞(MS09-010)

2009-04-1600:00:00
Root
www.seebug.org
11

0.911 High

EPSS

Percentile

98.6%

JSON

BUGTRAQ ID: 34470
CVE(CAN) ID: CVE-2009-0235

写字板是默认安装在所有Windows系统中的文字处理应用程序。

如果用户打开了特制的Word文件,写字板中的内存破坏可能导致远程代码执行。
0
Microsoft Windows XP x64 SP2
Microsoft Windows XP x64
Microsoft Windows XP SP3
Microsoft Windows XP SP2
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows 2000SP4
临时解决方法:

  • 通过限制对mswrd8.wpc的访问禁用Word 6转换器

echo y| cacls "%ProgramFiles%\Common Files\Microsoft Shared\TextConv\mswrd832.cnv" /E /P everyone:N
echo y| cacls "%ProgramFiles(x86)%\Common Files\Microsoft Shared\TextConv\mswrd832.cnv" /E /P everyone:N
echo y| cacls "%ProgramFiles%\Windows NT\Accessories\mswrd8.wpc" /E /P everyone:N
echo y| cacls "%ProgramFiles%\Windows NT\Accessories\mswrd864.wpc" /E /P everyone:N
echo y| cacls "%ProgramFiles(x86)%\Windows NT\Accessories\mswrd8.wpc" /E /P everyone:N

厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS09-010)以及相应补丁:
MS09-010:Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
链接:<a href=http://www.microsoft.com/technet/security/bulletin/MS09-010.mspx?pf=true target=_blank rel=external nofollow>http://www.microsoft.com/technet/security/bulletin/MS09-010.mspx?pf=true&lt;/a&gt;

Related

checkpoint_advisories 1
saint 4
cve 1
securityvulns 3
prion 1
openvas 2
nessus 1
threatpost 1
checkpoint_advisories
checkpoint_advisories
Microsoft WordPad Word 97 Text Converter Text Location Stack Overflow (MS09-010; CVE-2009-0235)
2009-04-14 00:00:00
saint
saint
Microsoft WordPad Word97 text converter buffer overflow
2009-04-23 00:00:00
Microsoft WordPad Word97 text converter buffer overflow
2009-04-23 00:00:00
Microsoft WordPad Word97 text converter buffer overflow
2009-04-23 00:00:00
cve
cve
CVE-2009-0235
2009-04-15 08:00:00
securityvulns
securityvulns
iDefense Security Advisory 04.15.09: Microsoft WordPad Word97 Converter Stack Buffer Overflow Vulnerability
2009-04-16 00:00:00
Microsoft Wordpad / Microsoft Works multiple security vulnerabilities
2009-06-10 00:00:00
Microsoft Security Bulletin MS09-010 - Critical Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution &#40;960477&#41;
2009-04-14 00:00:00
prion
prion
Stack overflow
2009-04-15 08:00:00
openvas
openvas
WordPad and Office Text Converter Memory Corruption Vulnerability (960477)
2008-12-12 00:00:00
WordPad and Office Text Converter Memory Corruption Vulnerability (960477)
2008-12-12 00:00:00
nessus
nessus
MS09-010: Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
2009-04-15 00:00:00
threatpost
threatpost
Microsoft plugs gaping holes in IE, Excel, Windows
2009-04-14 17:56:32

0.911 High

EPSS

Percentile

98.6%

JSON
Related for SSV:5048
checkpoint_advisories1saint4cve1securityvulns3prion1openvas2nessus1threatpost1