Trendmicro趋势科技OfficeScan客户端拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1117626 漏洞类型 资源管理错误
发布时间 2009-04-21 更新时间 2009-04-29
CVE编号 CVE-2009-1435 CNNVD-ID CNNVD-200904-488
漏洞平台 Windows CVSS评分 2.1
|漏洞来源
https://www.exploit-db.com/exploits/32939
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200904-488
|漏洞详情
OfficeScan是一种针对整个网段的分布式杀毒软件。如果用户使用OfficeScan扫描了包含有超长名称的文件夹的话,就会导致杀毒软件崩溃,具体取决于所使用的字符数。
|漏洞EXP
source: http://www.securityfocus.com/bid/34642/info

The Trend Micro OfficeScan Client is prone to a denial-of-service vulnerability because it fails to handle nested directories with excessively long names.

Successfully exploits will crash the affected application, resulting in a denial-of-service condition. Given the nature of this issue, code execution may be possible, but has not been confirmed.

OfficeScan 8.0 SP1 is vulnerable; other versions may also be affected. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/32939.zip
|参考资料

来源:VUPEN
名称:ADV-2009-1146
链接:http://www.vupen.com/english/advisories/2009/1146
来源:SECTRACK
名称:1022109
链接:http://www.securitytracker.com/id?1022109
来源:BID
名称:34642
链接:http://www.securityfocus.com/bid/34642
来源:BUGTRAQ
名称:20090421Re:TrendMicroOfficeScanClient-DOS
链接:http://www.securityfocus.com/archive/1/archive/1/502860/100/0/threaded
来源:BUGTRAQ
名称:20090421TrendMicroOfficeScanClient-DOS
链接:http://www.securityfocus.com/archive/1/archive/1/502847/100/0/threaded
来源:SECUNIA
名称:34737
链接:http://secunia.com/advisories/34737
来源:OSVDB
名称:53890
链接:http://osvdb.org/53890
来源:MISC
链接:http://es.geocities.com/jplopezy/officescan.zip