Microsoft Windows Server 2003 - AD Unauthenticated BROWSER ELECTION Remote Heap Overflow

admin

0
文章

0
评论

2023-12-09 02:07:26 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

Microsoft Windows Server 2003 - AD Unauthenticated BROWSER ELECTION Remote Heap Overflow

CVE编号

CVE-2011-0654

利用情况

暂无

补丁情况

N/A

披露时间

2011-02-16

漏洞描述

Integer underflow in the BowserWriteErrorLogEntry function in the Common Internet File System (CIFS) browser service in Mrxsmb.sys or bowser.sys in Active Directory in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via a malformed BROWSER ELECTION message, leading to a heap-based buffer overflow, aka "Browser Pool Corruption Vulnerability." NOTE: some of these details are obtained from third party information.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://archives.neohapsis.com/archives/fulldisclosure/2011-02/0284.html
http://blogs.technet.com/b/mmpc/archive/2011/02/16/my-sweet-valentine-the-cif...
http://blogs.technet.com/b/srd/archive/2011/02/16/notes-on-exploitability-of-...
http://secunia.com/advisories/43299
http://www.exploit-db.com/exploits/16166
http://www.kb.cert.org/vuls/id/323172
http://www.securityfocus.com/bid/46360
http://www.securitytracker.com/id?1025328
http://www.us-cert.gov/cas/techalerts/TA11-102A.html
http://www.vupen.com/english/advisories/2011/0394
http://www.vupen.com/english/advisories/2011/0938
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-019
https://exchange.xforce.ibmcloud.com/vulnerabilities/65376
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...