CVE-2002-0338
CVSS5.0
发布时间 :2002-06-25 00:00:00
修订时间 :2016-10-17 22:19:27
NMCOES    

[原文]The Bat! 1.53d and 1.54beta, and possibly other versions, allows remote attackers to cause a denial of service (crash) via an attachment whose name includes an MS-DOS device name.


[CNNVD]Rit Research Labs The Bat!拒绝服务漏洞(CNNVD-200206-095)

        
        The Bat!是一种微软操作系统上的电子邮件客户端软件。
        The Bat!在处理邮件附件时存在漏洞,远程攻击者可能利用这个问题对用户客户端软件进行拒绝服务攻击。
        如果The Bat!被配置成附件与邮件主体分开保存,而该附件又有一个特殊的主设备名而非常规文件名时,比如CON、AUX、PRN等等,The Bat!试图打开该设备,引发拒绝服务。1.53d之前的版本似乎不受影响。
        

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:ritlabs:the_bat:1.53d
cpe:/a:ritlabs:the_bat:1.54d

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0338
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0338
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200206-095
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=101483832026841&w=2
(UNKNOWN)  BUGTRAQ  20020227 SECURITY.NNOV: Special device access in The Bat!
http://www.iss.net/security_center/static/8303.php
(VENDOR_ADVISORY)  XF  thebat-msdos-device-dos(8303)
http://www.securityfocus.com/bid/4187
(VENDOR_ADVISORY)  BID  4187

- 漏洞信息

Rit Research Labs The Bat!拒绝服务漏洞
中危 其他
2002-06-25 00:00:00 2006-09-22 00:00:00
远程  
        
        The Bat!是一种微软操作系统上的电子邮件客户端软件。
        The Bat!在处理邮件附件时存在漏洞,远程攻击者可能利用这个问题对用户客户端软件进行拒绝服务攻击。
        如果The Bat!被配置成附件与邮件主体分开保存,而该附件又有一个特殊的主设备名而非常规文件名时,比如CON、AUX、PRN等等,The Bat!试图打开该设备,引发拒绝服务。1.53d之前的版本似乎不受影响。
        

- 公告与补丁

        临时解决方法:
        如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
        * 可以使用1.53d之前的低版The Bat!,也可以做如下设置
        禁止"Keep attachment files separately"选项,并利用"Account/Dispatch Mail On Server"删除POP3 Server上存在问题的邮件。
        厂商补丁:
        Rit Research Labs
        -----------------
        目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
        
        http://www.ritlabs.com/the_bat/

- 漏洞信息 (21307)

Rit Research Labs The Bat! 1.53 MS DOS Device Name Denial Of Service Vulnerability (EDBID:21307)
windows remote
2002-02-27 Verified
0 3APA3A
N/A [点击下载]
source: http://www.securityfocus.com/bid/4187/info

The Bat! is an e-mail client for Microsoft Windows operating systems.

A problem occurs with The Bat! when it is configured to save attachments seperately from the body of a message. It is possible to include a MS-DOS device name (such as CON, AUX, PRN, etc.) in the filename of the attachment to cause a denial of service to an e-mail client with this configuration.

This appears to be an issue with The Bat! version 1.53d. Earlier versions do not appear to be affected.

bash-2.03$ sendmail -U test@test.com
From: test
To: test
Content-Type: apllication/exe; name=lpt1

Test		

- 漏洞信息

14398
The Bat! MS-DOS Device Name Attachment Handling Remote DoS
Remote / Network Access Denial of Service
Loss of Availability Solution Unknown
Exploit Public Third-party Verified, Uncoordinated Disclosure

- 漏洞描述

- 时间线

2002-02-25 Unknow
2002-02-27 Unknow

- 解决方案

OSVDB is not aware of a solution for this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Rit Research Labs The Bat! MS DOS Device Name Denial Of Service Vulnerability
Failure to Handle Exceptional Conditions 4187
Yes No
2002-02-27 12:00:00 2009-07-11 10:56:00
This issue was reported to BugTraq by 3APA3A <3APA3A@SECURITY.NNOV.RU>.

- 受影响的程序版本

Rit Research Labs The Bat! 1.53 d
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT Workstation 4.0 SP6a
- Microsoft Windows NT Workstation 4.0 SP5
- Microsoft Windows NT Workstation 4.0 SP4
- Microsoft Windows NT Workstation 4.0 SP3
- Microsoft Windows NT Workstation 4.0 SP2
- Microsoft Windows NT Workstation 4.0 SP1
- Microsoft Windows NT Workstation 4.0
- Microsoft Windows XP Home

- 漏洞讨论

The Bat! is an e-mail client for Microsoft Windows operating systems.

A problem occurs with The Bat! when it is configured to save attachments seperately from the body of a message. It is possible to include a MS-DOS device name (such as CON, AUX, PRN, etc.) in the filename of the attachment to cause a denial of service to an e-mail client with this configuration.

This appears to be an issue with The Bat! version 1.53d. Earlier versions do not appear to be affected.

- 漏洞利用

This condition can be repoduced with the following example:

bash-2.03$ sendmail -U test@test.com
From: test
To: test
Content-Type: apllication/exe; name=lpt1

Test
.

- 解决方案


Verions prior to 1.53d appear not to be vulnerable, so affected users may potentially downgrade their e-mail client to an earlier version.

Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.

- 相关参考

     

     

    关于SCAP中文社区

    SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

    版权声明

    CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站