Microsoft Word 无序列表 拒绝服务攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1115452 漏洞类型 资源管理错误
发布时间 2008-06-17 更新时间 2008-09-11
CVE编号 CVE-2008-2752 CNNVD-ID CNNVD-200806-252
漏洞平台 Windows CVSS评分 7.1
|漏洞来源
https://www.exploit-db.com/exploits/31934
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200806-252
|漏洞详情
MicrosoftWord20009.0.2812和200311.8106.8172版本没有恰当地处理无序列表,这使得用户协助式远程攻击者可以借助一个特制的.doc文件,引起拒绝服务攻击(内存破坏和应用程序崩溃)或可能执行任意代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/29769/info

Microsoft Word is prone to a remote memory-corruption vulnerability.

An attacker could exploit this issue by enticing a victim to open and interact with malicious Word files.

Successfully exploiting this issue will corrupt memory and crash the application. Given the nature of this issue, attackers may also be able to execute arbitrary code in the context of the currently logged-in user. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/31934-1.doc
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/31934-2.doc
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/31934-3.doc
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/31934-4.doc
|参考资料

来源:XF
名称:microsoft-word-unorderedlist-code-execution(43155)
链接:http://xforce.iss.net/xforce/xfdb/43155
来源:MISC
链接:http://www.securityfocus.com/data/vulnerabilities/exploits/crash-word-4.doc
来源:MISC
链接:http://www.securityfocus.com/data/vulnerabilities/exploits/crash-word-3.doc
来源:MISC
链接:http://www.securityfocus.com/data/vulnerabilities/exploits/crash-word-2.doc
来源:MISC
链接:http://www.securityfocus.com/data/vulnerabilities/exploits/crash-word-1.doc
来源:BID
名称:29769
链接:http://www.securityfocus.com/bid/29769