This Black Tuesday (the 13th, no less), Microsoft released the first security patch of 2009. This patch addresses three vulnerabilities in the SRV.SYS driver of the Microsoft Windows operating system. The SRV.SYS driver implements the Server Service component of the SMB network service, exposed via ports 139 and 445. The first issue addressed in this patch (CVE-2008-4114) has been public since September 14th, 2008 and allows a remote user to crash a Windows-based system by sending a malformed WriteAndX request to a named pipe. This flaw is interesting because it is triggered by memory copy, but instead of an overflow, it is a miscalculation of the source pointer. When the target machine receives this write request, it attempts to read from a memory location that may not exist, causing the entire operating system to crash (and by default, reboot). Nor
微软发布了2009年的首个安全补丁,修复了SRV.SYS驱动中的三个漏洞,这些漏洞可能导致远程用户通过发送畸形WriteAndX请求使Windows系统崩溃。其中CVE-2008-4114是由于内存拷贝导致的源指针计算错误,而非溢出。另外两个漏洞(CVE-2008-4834和CVE-2008-4835)涉及小缓冲区清理,可能引发NULL字节覆盖,虽可能导致DoS攻击,但尚未证实能执行代码。
最低0.47元/天 解锁文章
扫一扫
1478
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
