漏洞类别:Web server漏洞等级: 
漏洞信息
Htimage.exe and Imapemap.exe are components of the Microsoft FrontPage 97 and 98 Server Extensions. They provide server side image mapping support for legacy browsers. These components contain unchecked buffers that could be exploited to execute arbitrary code. Excessively long unchecked arguments passed to the URL can cause a buffer overflow.
Additionally, on all versions, the server discloses it's absolute path, and unauthorized users can detect arbitrary files on the system.
漏洞危害
If successfully exploited, unauthorized remote users can execute arbitrary code on the server. Even if the buffer overflow is not exploitable, unauthorized users can obtain the absolute path of the Web server and use it in subsequent attacks. Moreover, they can check installed packages or the configuration of your server by checking for the presence of sensitive files.
解决方案
Workaround:
Unless it is required on this system, uninstall the FrontPage extension. Read Microsoft Security Bulletin MS00-028 for more information about this vulnerability.
To eliminate this vulnerability, customers who are hosting web sites using any of the affected products should delete all copies of the files Htimage.exe and Imagemap.exe from their servers. Remediation instructions can be found at FAQ section.
Additional Reference Links:
http://www.microsoft.com/technet/security/bulletin/ms00-028.asp
http://www.securityfocus.com/bid/1117
http://www.securityfocus.com/archive/1/archive/1/470458/100/0/threaded
0day
文章评论