FreeBSD OPIE "__opiereadrec()" 单字节栈内存破坏漏洞
漏洞编号: | NIPC-2010-2044 | |
CVE编号: | CVE-2010-1938 | |
漏洞类别: | 数值错误 | |
发布日期: | 2010-05-28 | |
更新日期: | 2010-05-31 | |
CVSS值: | 9.3 | |
严重级别: | 紧急 |
利用范围: | 远程 | |
攻击复杂度: | 中 | |
认证级别: | 无认证 | |
机密性影响: | 完全 | |
完整性影响: | 完全 | |
可用性影响: | 完全 |
漏洞描述: |
FreeBSD6.4 至 8.1-PRERELEASE版本所使用的OPIE 2.4.1-test1 及之前版本认证系统中readrec.c文件的__opiereadrec()函数存在单字节栈溢出漏洞,攻击者利用该漏洞可能引起拒绝服务攻击或通过长 username字符串执行任意代码。 |
受影响系统或软件: |
freebsd,freebsd,6.4 freebsd,freebsd,6.4,release freebsd,freebsd,6.4,release_p2 freebsd,freebsd,6.4,release_p3 freebsd,freebsd,6.4,release_p4 freebsd,freebsd,6.4,release_p5 freebsd,freebsd,6.4,stable freebsd,freebsd,6,stable freebsd,freebsd,7.0 freebsd,freebsd,7.0-release freebsd,freebsd,7.0,beta_4 freebsd,freebsd,7.0,current freebsd,freebsd,7.0,pre-release freebsd,freebsd,7.0,release freebsd,freebsd,7.0,release-p12 freebsd,freebsd,7.0,release-p8 freebsd,freebsd,7.0,release-p9 freebsd,freebsd,7.0,releng freebsd,freebsd,7.0,stable freebsd,freebsd,7.0_beta4 freebsd,freebsd,7.0_releng freebsd,freebsd,7.1 freebsd,freebsd,7.1,pre-release freebsd,freebsd,7.1,rc1 freebsd,freebsd,7.1,release-p1 freebsd,freebsd,7.1,release-p2 freebsd,freebsd,7.1,release-p4 freebsd,freebsd,7.1,release-p5 freebsd,freebsd,7.1,release-p6 freebsd,freebsd,7.1,stable freebsd,freebsd,7.2 freebsd,freebsd,7.2,pre-release freebsd,freebsd,7.2,stable freebsd,freebsd,8.0 |
解决方案: |
厂商已经发布安全 更新。 |
参考资源: |
http://www.securityfocus.com/bid/40403 http://site.pi3.com.pl/adv/libopie-adv.txt http://securitytracker.com/id?1024040 http://securityreason.com/securityalert/7450 http://securityreason.com/achievement_securityalert/87 http://security.FreeBSD.org/advisories/FreeBSD-SA-10:05.opie.asc http://secunia.com/advisories/39966 http://secunia.com/advisories/39963 http://blog.pi3.com.pl/?p=111