Microsoft Works wksss.exe多个缓冲区溢出或拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1110453 漏洞类型 边界条件错误
发布时间 2006-06-14 更新时间 2006-07-20
CVE编号 CVE-2006-3653 CNNVD-ID CNNVD-200607-259
漏洞平台 Windows CVSS评分 2.6
|漏洞来源
https://www.exploit-db.com/exploits/28222
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200607-259
|漏洞详情
MicrosoftWorks是微软发布的家庭办公、家政管理套件。MicrosoftWorks的电子表格组件(wksss.exe)没有正确地处理特制的文件,导致缓冲区溢出或拒绝服务。除了纯文本文件外,所有支持的文件格式都受影响,具体如下:Works6.0-8.x=>拒绝服务-99%CPU占用Works4.x/2000=>拒绝服务-崩溃(msvcr71.dll)WorksforWindows3.0=>拒绝服务-崩溃WorksforWindows2.0/WorksforDOS=>拒绝服务-崩溃Excel97-2000=>缓冲区溢出Excel5.0/95=>缓冲区溢出Excel4.0=>拒绝服务-崩溃Lotus1-2-3=>拒绝服务-崩溃(msvcr71.dll)
|漏洞EXP
source: http://www.securityfocus.com/bid/18989/info

The spreadsheet component of Microsoft Works is prone to multiple remote vulnerabilities, including buffer-overflow and denial-of service issues. 

These issues occur because the application fails to handle specifically crafted spreadsheet documents when importing them into Microsoft Works. 

These vulnerabilities allow remote attackers to execute arbitrary machine code in the context of affected application. Attackers may also crash vulnerable applications, denying service to legitimate users.

Microsoft Works version 8.0 is vulnerable to these issues; other versions may also be affected.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/28222.zip
|参考资料

来源:BID
名称:18989
链接:http://www.securityfocus.com/bid/18989
来源:BUGTRAQ
名称:20060714MicrosoftWorks-BufferOverflows/DenialofService(DoS)-Vulnerabilities
链接:http://www.securityfocus.com/archive/1/archive/1/440056/100/0/threaded
来源:VUPEN
名称:ADV-2006-2813
链接:http://www.frsirt.com/english/advisories/2006/2813
来源:SECTRACK
名称:1016504
链接:http://securitytracker.com/id?1016504