CVE-2002-0861
CVSS7.5
发布时间 :2002-09-24 00:00:00
修订时间 :2016-10-17 22:22:45
NMCOS    

[原文]Microsoft Office Web Components (OWC) 2000 and 2002 allows remote attackers to bypass the "Allow paste operations via script" setting, even when it is disabled, via the (1) Copy method of the Cell object or (2) the Paste method of the Range object.


[CNNVD]Microsoft OWC剪贴板信息泄露漏洞(CNNVD-200209-036)

        
        Microsoft Office Web Components (OWC)是一套ActiveX对象,使用Spreadsheets、Charts、Pivot tables等提供WEB页面更丰富的HTML文档形式。OWC在OFFCIE2000和OFFICE XP下都默认安装,也可以独立的下载使用。
        Microsoft Office Web Components (OWC9和OWC10)中在处理Range对象和Cell对象中存在漏洞,导致远程攻击者可能完全控制剪贴板操作。
        通过WOC9和OWC10中的Spreadsheet组件可以使攻击者即使用户把浏览器设置在安全区域(intranet)中,也可以完全控制剪贴板操作。通过设置相关Range对象的"Paste"模式和Cell对象中的"Copy"模式,就可以控制剪贴板,攻击者可以监视剪贴板信息并记录到自己控制的服务器,导致敏感信息泄露;攻击者也可以把数据插入到剪贴板。
        

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:microsoft:office_web_components:2000Microsoft office_web_components 2000
cpe:/a:microsoft:project:2002Microsoft Project 2002
cpe:/a:microsoft:office_web_components:2002Microsoft Office Web Components 2002
cpe:/a:microsoft:project:2000Microsoft Project 2000

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0861
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0861
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200209-036
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=101829726516346&w=2
(UNKNOWN)  BUGTRAQ  20020408 Controlling the clipboard with OWC in IE (GM#007-IE)
http://www.iss.net/security_center/static/8779.php
(VENDOR_ADVISORY)  XF  owc-spreadsheet-clipboard-access (8779)
http://www.microsoft.com/technet/security/bulletin/ms02-044.asp
(VENDOR_ADVISORY)  MS  MS02-044
http://www.securityfocus.com/bid/4457
(UNKNOWN)  BID  4457

- 漏洞信息

Microsoft OWC剪贴板信息泄露漏洞
高危 设计错误
2002-09-24 00:00:00 2005-10-20 00:00:00
远程  
        
        Microsoft Office Web Components (OWC)是一套ActiveX对象,使用Spreadsheets、Charts、Pivot tables等提供WEB页面更丰富的HTML文档形式。OWC在OFFCIE2000和OFFICE XP下都默认安装,也可以独立的下载使用。
        Microsoft Office Web Components (OWC9和OWC10)中在处理Range对象和Cell对象中存在漏洞,导致远程攻击者可能完全控制剪贴板操作。
        通过WOC9和OWC10中的Spreadsheet组件可以使攻击者即使用户把浏览器设置在安全区域(intranet)中,也可以完全控制剪贴板操作。通过设置相关Range对象的"Paste"模式和Cell对象中的"Copy"模式,就可以控制剪贴板,攻击者可以监视剪贴板信息并记录到自己控制的服务器,导致敏感信息泄露;攻击者也可以把数据插入到剪贴板。
        

- 公告与补丁

        临时解决方法:
        如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
        * 通过设置浏览器的安全配置来关闭执行Active X控件。
        厂商补丁:
        Microsoft
        ---------
        目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
        
        http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/Default.asp

- 漏洞信息

3008
Microsoft IE OWC Cut/Paste Data Read and Injection

- 漏洞描述

Microsoft Office Web Components can allow an attacker to read and inject streams of data from a remote machine's clipboard. This flaw is due to the OWC installation and affects machines even if they disabled "Allow paste operations via script". The "Paste" method of the Range object and the "Copy" method of the Cell object give a remote attacker full control over clipboard operations via Internet Explorer. With this access, the attacker can continously monitor clipboard data as well as paste their own data to it.

- 时间线

2002-02-24 Unknow
2002-02-24 Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Microsoft Office Web Components Clipboard Information Disclosure Vulnerability
Design Error 4457
Yes No
2002-04-08 12:00:00 2009-07-11 11:56:00
Discovered by GreyMagic Software <security@greymagic.com>.

- 受影响的程序版本

Microsoft Project 2002
Microsoft Project 2000
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
Microsoft Office Web Components 2002
+ Microsoft BizTalk Server 2002 Developer Edition
+ Microsoft BizTalk Server 2002 Enterprise Edition
+ Microsoft Commerce Server 2002
+ Microsoft Money 2002
+ Microsoft Money 2003
+ Microsoft Office XP
+ Microsoft Project 2002
+ Microsoft Project Server 2002
Microsoft Office Web Components 2000 0
+ Microsoft Back Office Server 2000
+ Microsoft Back Office Server 2000
+ Microsoft BizTalk Server 2000 Developer Edition SP2
+ Microsoft BizTalk Server 2000 Developer Edition SP2
+ Microsoft BizTalk Server 2000 Developer Edition SP1a
+ Microsoft BizTalk Server 2000 Developer Edition SP1a
+ Microsoft BizTalk Server 2000 Developer Edition
+ Microsoft BizTalk Server 2000 Developer Edition
+ Microsoft BizTalk Server 2000 Enterprise Edition SP2
+ Microsoft BizTalk Server 2000 Enterprise Edition SP2
+ Microsoft BizTalk Server 2000 Enterprise Edition SP1a
+ Microsoft BizTalk Server 2000 Enterprise Edition SP1a
+ Microsoft BizTalk Server 2000 Enterprise Edition
+ Microsoft BizTalk Server 2000 Enterprise Edition
+ Microsoft BizTalk Server 2000 Standard Edition SP2
+ Microsoft BizTalk Server 2000 Standard Edition SP2
+ Microsoft BizTalk Server 2000 Standard Edition SP1a
+ Microsoft BizTalk Server 2000 Standard Edition SP1a
+ Microsoft BizTalk Server 2000 Standard Edition
+ Microsoft BizTalk Server 2000 Standard Edition
+ Microsoft BizTalk Server 2002 Developer Edition
+ Microsoft BizTalk Server 2002 Enterprise Edition
+ Microsoft Commerce Server 2000 SP2
+ Microsoft Commerce Server 2000 SP2
+ Microsoft Commerce Server 2000 SP1
+ Microsoft Commerce Server 2000 SP1
+ Microsoft Commerce Server 2000
+ Microsoft Commerce Server 2000
+ Microsoft Commerce Server 2002
+ Microsoft Internet Explorer for Unix SP2
+ Microsoft ISA Server 2000 SP2
+ Microsoft ISA Server 2000 SP1
+ Microsoft ISA Server 2000 SP1
+ Microsoft ISA Server 2000 FP1
+ Microsoft ISA Server 2000
+ Microsoft ISA Server 2000
+ Microsoft ISA Server 2000 Enterprise Edition SP2
+ Microsoft ISA Server 2000 Enterprise Edition SP1
+ Microsoft ISA Server 2000 Enterprise Edition
+ Microsoft Office 2000 SP2
+ Microsoft Office 2000 SP2
+ Microsoft Office 2000 SP1
+ Microsoft Office 2000 SP1
+ Microsoft Office 2000
+ Microsoft Office 2000
+ Microsoft Office XP SP3
+ Microsoft Office XP SP2
+ Microsoft Office XP SP1
+ Microsoft Office XP
+ Microsoft Small Business Server 2000 0
+ Microsoft Visual Studio .NET 2002
+ Microsoft Visual Studio .NET 2003 Enterprise Architect
+ Microsoft Visual Studio .NET Enterprise Architect Edition
+ Microsoft Visual Studio .NET Enterprise Developer Edition

- 漏洞讨论

Microsoft Office Web Components (OWC) are a collection of ActiveX objects which provide limited Office functionality to web pages. OWC is installed by default with both Office 2000 and Office XP.

A vulnerability has been reported within some versions of the OWC Spreadsheet component. It is possible for a web page using this component to gain control of the clipboard operations, even when the 'Allow paste operations via script' security feature in IE is disabled.

- 漏洞利用

An exploit is provided in the GreyMagic advisory listed in the references section of this document.

- 解决方案

Fixes are available:


Microsoft Office Web Components 2002

Microsoft Project 2002

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站