CVE-2002-0850
CVSS7.5
发布时间 :2002-10-04 00:00:00
修订时间 :2016-10-17 22:22:38
NMCO    

[原文]Buffer overflow in PGP Corporate Desktop 7.1.1 allows remote attackers to execute arbitrary code via an encrypted document that has a long filename when it is decrypted.


[CNNVD]PGP远程缓冲区溢出及口令泄露漏洞(CNNVD-200210-155)

        
        PGP(Pretty Good Privacy)是一款由Network Associates维护的加密应用程序,可使用在多种Linux、Unix和Microsoft Windows操作系统下。
        PGP对长文件名缺少正确检查,远程攻击者可以利用这个漏洞进行缓冲区溢出攻击者,导致以当前用户权限执行任意指令或者导致口令泄露。
        PGP在加密或者解密一个带有超长文件名的文件时,可导致PGP崩溃,远程攻击者可以建立一个加密文件,发送给目标用户,当用户使用PGP处理时可能导致以用户进程的权限在系统上执行任意指令。
        攻击者可以构建类似如下的文件名:
        <196 bytes><9 bytes><可读地址><29 bytes>
        然后攻击者使用目标用户的公钥加密文件。在多数情况下,公钥一般包含使用PGP客户端软件的banner信息和相关的版本,这表示攻击者可以容易从PGP KEY服务器上找到受此漏洞影响的用户。
        加密的档案可以通过Outlook附件形式发给目标用户,当用户打开长文件名的时候可导致缓冲区溢出发生。
        在部分情况下,攻击者也可以在PGP被加密的恶意文件破坏后及在包含口令的内存被覆盖之前获得目标用户的口令。
        

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0850
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0850
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200210-155
(官方数据源) CNNVD

- 其它链接及资源

http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0106.html
(UNKNOWN)  VULNWATCH  20020905 Foundstone Labs Advisory - Remotely Exploitable Buffer Overflow in PGP
http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/ReadMe.txt
(UNKNOWN)  CONFIRM  http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/ReadMe.txt
http://marc.info/?l=bugtraq&m=103133995920090&w=2
(UNKNOWN)  BUGTRAQ  20020906 Foundstone Labs Advisory - Remotely Exploitable Buffer Overflow in PGP
http://www.securityfocus.com/bid/5656
(VENDOR_ADVISORY)  BID  5656
http://xforce.iss.net/xforce/xfdb/10043
(VENDOR_ADVISORY)  XF  pgp-long-filename-bo(10043)

- 漏洞信息

PGP远程缓冲区溢出及口令泄露漏洞
高危 未知
2002-10-04 00:00:00 2006-09-22 00:00:00
远程  
        
        PGP(Pretty Good Privacy)是一款由Network Associates维护的加密应用程序,可使用在多种Linux、Unix和Microsoft Windows操作系统下。
        PGP对长文件名缺少正确检查,远程攻击者可以利用这个漏洞进行缓冲区溢出攻击者,导致以当前用户权限执行任意指令或者导致口令泄露。
        PGP在加密或者解密一个带有超长文件名的文件时,可导致PGP崩溃,远程攻击者可以建立一个加密文件,发送给目标用户,当用户使用PGP处理时可能导致以用户进程的权限在系统上执行任意指令。
        攻击者可以构建类似如下的文件名:
        <196 bytes><9 bytes><可读地址><29 bytes>
        然后攻击者使用目标用户的公钥加密文件。在多数情况下,公钥一般包含使用PGP客户端软件的banner信息和相关的版本,这表示攻击者可以容易从PGP KEY服务器上找到受此漏洞影响的用户。
        加密的档案可以通过Outlook附件形式发给目标用户,当用户打开长文件名的时候可导致缓冲区溢出发生。
        在部分情况下,攻击者也可以在PGP被加密的恶意文件破坏后及在包含口令的内存被覆盖之前获得目标用户的口令。
        

- 公告与补丁

        临时解决方法:
        如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
        * 暂时不要使用PGP加密文件。
        厂商补丁:
        Network Associates
        ------------------
        目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
        Network Associates PGP 5.0 i:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 5.0:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 5.5.3 i for Windows:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 5.5.5:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 6.0.2 i:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 6.0.2:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 6.5.1 i:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 6.5.3 i for Windows:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 6.5.3:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 6.5.8:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 7.0:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP Freeware 7.0.3:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 7.0.3:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 7.0.4:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP Corporate Desktop 7.1:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 7.1:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP Corporate Desktop 7.1.1:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

        Network Associates PGP 7.1.1:
        Network Associates Hotfix PGPhotfix_OutlookLFN_20020828.zip
        
        http://download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1.1/pgphotfix_outlookplugin711/PGPhotfix_OutlookLFN_20020828.zip

- 漏洞信息

4533
PGP Desktop Filename Handling Overflow
Input Manipulation
Loss of Integrity

- 漏洞描述

- 时间线

2002-09-06 Unknow
Unknow Unknow

- 解决方案

Products

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站