Scheduler远程任意代码执行漏洞(MS04-022)[转载]

/ns/ld/win/data/20040726154701.htm

受影响系统:
Microsoft Windows XP Professional SP1
Microsoft Windows XP Professional
Microsoft Windows XP Home SP1
Microsoft Windows XP Home
Microsoft Windows 2000SP4
Microsoft Windows 2000SP3
Microsoft Windows 2000SP2
描述:
--------------------------------------------------------------------------------
CVE(CAN) ID: CAN-2004-0212

Microsoft Task Scheduler用于任务调度。

Microsoft Task Scheduler在处理应用程序文件名验证时存在问题,远程攻击者可以利用这个漏洞以系统权限在系统上执行任意指令。

成功利用此漏洞攻击者可以完全控制整个系统,但是此漏洞需要部分用户交互才能触发。攻击者可以构建恶意WEB页,诱使用户点击来触发此漏洞。

<*来源:Brett Moore (brett.moore@SECURITY-ASSESSMENT.COM)
Dustin Schneider (dschn@verizon.net)
Peter Winter-Smith (peter4020@hotmail.com)

链接:http://www.microsoft.com/technet/security/bulletin/MS04-022.mspx
*>

建议:
--------------------------------------------------------------------------------
厂商补丁:

Microsoft
---------
Microsoft已经为此发布了一个安全公告(MS04-022)以及相应补丁:
MS04-022:Vulnerability in Task Scheduler Could Allow Code Execution (841873)
链接:http://www.microsoft.com/technet/security/bulletin/MS04-022.mspx

补丁下载:

Microsoft Windows 2000 Service Pack 2, Microsoft Windows 2000 Service Pack 3, Microsoft Windows 2000 Service Pack 4:
http://www.microsoft.com/downloads/details.aspx?FamilyId=BBF3C8A1-7D72-4CE9-A586-7C837B499C08&displaylang=en

Microsoft Windows XP and Microsoft Windows XP Service Pack 1
http://www.microsoft.com/downloads/details.aspx?FamilyId=8E8D0A2D-D3B9-4DE8-8B6F-FC27715BC0CF&displaylang=en

Microsoft Windows XP 64-Bit Edition Service Pack 1
http://www.microsoft.com/downloads/details.aspx?FamilyId=7B4AC0FA-7954-4993-85A1-85298F122CE0&displaylang=en

=========================
文章类型:转载 提交:风之眼睛 核查:NetDemon