CVE-2001-0324
CVSS2.6
发布时间 :2001-05-03 00:00:00
修订时间 :2008-09-05 16:23:50
NMCOES    

[原文]Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via a Java applet that opens a large number of UDP sockets, which prevents the host from establishing any additional UDP connections, and possibly causes a crash.


[CNNVD]Win2000和98的UDP套接字拒绝服务漏洞(CNNVD-200105-033)

        CVE(CAN) ID: CAN-2001-0324
        
        
        
        Win2000和Win98容易受到拒绝服务的影响。当收到一封恶意构造的电子邮件或者访问某个
        
        恶意的网站时,Win2000可能会停止DNS解析,而Win98则会拒绝接受新的TCP连接。这是由
        
        于用户应用程序在分配网络套接字(socket)时缺少限制所引起的。放置在网站上的恶意
        
        的Java applet可以利用这个漏洞并使受害系统拒绝服务。
        
        
        
        <* 来源:Georgi Guninski (guninski@guninski.com) *>
        
        
        
        

- CVSS (基础分值)

CVSS分值: 2.6 [轻微(LOW)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: HIGH [漏洞利用存在特定的访问条件]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/o:microsoft:windows_2000Microsoft Windows 2000
cpe:/o:microsoft:windows_98::goldMicrosoft windows 98_gold

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0324
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2001-0324
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200105-033
(官方数据源) CNNVD

- 其它链接及资源

http://www.securityfocus.com/bid/2340
(VENDOR_ADVISORY)  BID  2340
http://archives.neohapsis.com/archives/win2ksecadvice/2001-q1/0060.html
(VENDOR_ADVISORY)  BUGTRAQ  20010206 Windows client UDP exhaustion denial of service

- 漏洞信息

Win2000和98的UDP套接字拒绝服务漏洞
低危 其他
2001-05-03 00:00:00 2005-10-20 00:00:00
远程※本地  
        CVE(CAN) ID: CAN-2001-0324
        
        
        
        Win2000和Win98容易受到拒绝服务的影响。当收到一封恶意构造的电子邮件或者访问某个
        
        恶意的网站时,Win2000可能会停止DNS解析,而Win98则会拒绝接受新的TCP连接。这是由
        
        于用户应用程序在分配网络套接字(socket)时缺少限制所引起的。放置在网站上的恶意
        
        的Java applet可以利用这个漏洞并使受害系统拒绝服务。
        
        
        
        <* 来源:Georgi Guninski (guninski@guninski.com) *>
        
        
        
        

- 公告与补丁

        
        
        临时解决方法:
        
        
        
        在浏览器中禁止java applet.
        
        
        
        厂商补丁:
        
        
        
        暂无
        

- 漏洞信息 (20613)

Microsoft Windows 98/2000 UDP Socket DoS Vulnerability (EDBID:20613)
windows dos
2001-02-06 Verified
0 Georgi Guninski
N/A [点击下载]
source: http://www.securityfocus.com/bid/2340/info

Microsoft Windows 2000 and 98 are subject to a denial of service condition. Receiving a maliciously crafted email or visiting a malicious web site could prevent Windows 2000 from DNS resolution and Windows 98 from accepting any new TCP connections. This is due to a lack of restrictions on the allocation of network "sockets" by user applications.

A malicious java applet placed on a website could exploit this vulnerability and cause a DoS on victim systems. 

for(i=0;i<m;i++)
{

try { DatagramSocket d = new DatagramSocket();v.addElement(d);}
catch (Exception e) {System.out.println("Exhausted, i="+i);}
}
		

- 漏洞信息

13477
Microsoft Windows Java Applet UDP Socket Exhaustion DoS
Remote / Network Access Denial of Service
Loss of Availability
Exploit Public

- 漏洞描述

- 时间线

2001-02-06 Unknow
2001-02-06 Unknow

- 解决方案

Products

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Microsoft Windows UDP Socket DoS Vulnerability
Failure to Handle Exceptional Conditions 2340
Yes Yes
2001-02-06 12:00:00 2009-07-11 04:46:00
Discovered and posted to Bugtraq on Feb 6, 2001 by Georgi Guninski <guninski@guninski.com>

- 受影响的程序版本

Microsoft Windows 98
Microsoft Windows 2000 Terminal Services
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Server
Microsoft Windows 2000 Server
+ Avaya DefinityOne Media Servers
+ Avaya IP600 Media Servers
+ Avaya S3400 Message Application Server 0
+ Avaya S8100 Media Servers 0
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server

- 漏洞讨论

Microsoft Windows 2000 and 98 are subject to a denial of service condition. Receiving a maliciously crafted email or visiting a malicious web site could prevent Windows 2000 from DNS resolution and Windows 98 from accepting any new TCP connections. This is due to a lack of restrictions on the allocation of network "sockets" by user applications.

A malicious java applet placed on a website could exploit this vulnerability and cause a DoS on victim systems.

- 漏洞利用

Georgi Guninski &lt;guninski@guninski.com&gt; has provided the following exploit:

for(i=0;i&lt;m;i++)
{

try { DatagramSocket d = new DatagramSocket();v.addElement(d);}
catch (Exception e) {System.out.println("Exhausted, i="+i);}
}


Georgi Guninski has also provided a demonstration:

http://www.guninski.com/winudpdos.html

- 解决方案

Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站