Lucene search
RootSSV:19449HistoryApr 14, 2010 - 12:00 a.m.
Microsoft Windows Cabinet File Viewer Cabview验证远程代码执行漏洞(MS10-019)
2010-04-1400:00:00
Root
www.seebug.org
22
0.434 Medium
EPSS
Percentile
97.4%
BUGTRAQ ID: 39332
CVE ID: CVE-2010-0487
Windows Cabinet File Viewer(cabview.dll)用于查看、打开、浏览和解压cabinet文件和档案。
Windows Cabinet File Viewer在签名和验证cabinet文件时忽略了文件digest的一些字段。匿名攻击者可以通过修改已有的签名cabinet文件以便将签名文件的未验证部分指向恶意代码然后诱骗用户打开或查看特制的cabinet文件来利用此漏洞。成功利用此漏洞的攻击者可以完全控制受影响的系统。
Microsoft Cabinet File Viewer Shell Extension 6.1
Microsoft Cabinet File Viewer Shell Extension 6.0
Microsoft Cabinet File Viewer Shell Extension 5.1
厂商补丁:
Microsoft
Microsoft已经为此发布了一个安全公告(MS10-019)以及相应补丁:
MS10-019:Vulnerabilities in Windows Could Allow Remote Code Execution (981210)
链接:http://www.microsoft.com/technet/security/bulletin/MS10-019.mspx?pf=true
Related
cve
cve
CVE-2010-0487
2010-04-14 16:00:01
prion
prion
Input validation
2010-04-14 16:00:00
cvelist
cvelist
CVE-2010-0487
2010-04-14 15:44:00
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2010-0487
2010-04-14 16:00:01
openvas
openvas
securityvulns
securityvulns
nessus
nessus