CVE-2000-1117
CVSS5.0
发布时间 :2001-01-09 00:00:00
修订时间 :2008-09-10 15:06:39
NMCOS    

[原文]The Extended Control List (ECL) feature of the Java Virtual Machine (JVM) in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method.


[CNNVD]Lotus Notes Client R5文件存在验证漏洞(CNNVD-200101-107)

        Lotus Notes Client R5中Java Virtual Machine (JVM)的Extended Control List (ECL)功能存在漏洞。恶意的网站操作者可以通过测量getSystemResource类函数的执行中的延迟来确定客户端上文件的存在。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1117
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-1117
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200101-107
(官方数据源) CNNVD

- 其它链接及资源

http://www.securityfocus.com/bid/1994
(VENDOR_ADVISORY)  BID  1994
http://archives.neohapsis.com/archives/bugtraq/2000-11/0341.html
(UNKNOWN)  BUGTRAQ  20001124 Security Hole in ECL Feature of Java VM Embedded in Lotus Notes Client R5

- 漏洞信息

Lotus Notes Client R5文件存在验证漏洞
中危 访问验证错误
2001-01-09 00:00:00 2006-09-21 00:00:00
远程※本地  
        Lotus Notes Client R5中Java Virtual Machine (JVM)的Extended Control List (ECL)功能存在漏洞。恶意的网站操作者可以通过测量getSystemResource类函数的执行中的延迟来确定客户端上文件的存在。

- 公告与补丁

        Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

- 漏洞信息

10807
IBM Lotus Notes Client JVM ECL getSystemResource Method File Existence Disclosure
Remote / Network Access Information Disclosure
Loss of Confidentiality Solution Unknown

- 漏洞描述

- 时间线

2000-11-24 Unknow
Unknow Unknow

- 解决方案

OSVDB is not aware of a solution for this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Lotus Notes Client R5 File Existence Verification Vulnerability
Access Validation Error 1994
Yes Yes
2000-11-24 12:00:00 2009-07-11 03:56:00
Discovered by Yasuyuki Endo and Hiromitsu Takagi <takagi@etl.go.jp> and posted to Bugtraq on November 24, 2000.

- 受影响的程序版本

Lotus Notes Client R5

- 漏洞讨论

Lotus Notes Client R5 is a messaging and collaboration tool that contains a built in web browser. The web browser implements a Java Virtual Machine (VM) designed specifically for Lotus Notes. A security vulnerability exists in the Execution Control List (ECL) feature within the Java VM that may allow a third party intruder to verify the existence of files on the system. The ECL utilizes a much more lenient ruleset when accessing local files than the standard Java security model implemented by JDK 1.1 which prohibits any access to local files. The ECL will present the user with a dialogue box whenever he/she attempts to read an existing local file if the getSystemResource() method of the java.lang.ClassLoader class is used. At this point, the user can either authorize execution or abort the operation.

By observing the time elapsed during execution, it is possible to verify the existence of files on the target machine through a specially crafted java applet. If a malicious website operator were to host such a java applet on their site, they would be able to determine what files exist on the visitor's systems.

- 漏洞利用

Hiromitsu Takagi &lt;takagi@etl.go.jp&gt; has set up the following demonstration page:

http://java-house.etl.go.jp/~takagi/java/security/lotus-notes-existence-attack/Test.html

- 解决方案

Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站