CVE-2003-0909
CVSS7.2
发布时间 :2004-06-01 00:00:00
修订时间 :2008-09-10 15:20:54
NMCOS    

[原文]Windows XP allows local users to execute arbitrary programs by creating a task at an elevated privilege level through the eventtriggers.exe command-line tool or the Task Scheduler service, aka "Windows Management Vulnerability."


[CNNVD]Microsoft Windows管理存在漏洞(MS04-011)(CNNVD-200406-018)

        
        Microsoft Windows XP是一款微软开发的操作系统。
        Microsoft Windows XP在建立任务时存在权限提升问题,在特殊条件下,非特权用户可以以系统权限建立一个任务,并控制系统。
        目前没有详细漏洞细节提供。
        

- CVSS (基础分值)

CVSS分值: 7.2 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:1004WinXP Management Vulnerability
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0909
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0909
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200406-018
(官方数据源) CNNVD

- 其它链接及资源

http://www.kb.cert.org/vuls/id/206468
(VENDOR_ADVISORY)  CERT-VN  VU#206468
http://www.us-cert.gov/cas/techalerts/TA04-104A.html
(VENDOR_ADVISORY)  CERT  TA04-104A
http://www.microsoft.com/technet/security/bulletin/ms04-011.asp
(UNKNOWN)  MS  MS04-011
http://xforce.iss.net/xforce/xfdb/15678
(UNKNOWN)  XF  winxp-task-gain-privileges(15678)
http://www.securityfocus.com/bid/10125
(UNKNOWN)  BID  10125
http://www.ciac.org/ciac/bulletins/o-114.shtml
(UNKNOWN)  CIAC  O-114

- 漏洞信息

Microsoft Windows管理存在漏洞(MS04-011)
高危 访问验证错误
2004-06-01 00:00:00 2005-10-20 00:00:00
本地  
        
        Microsoft Windows XP是一款微软开发的操作系统。
        Microsoft Windows XP在建立任务时存在权限提升问题,在特殊条件下,非特权用户可以以系统权限建立一个任务,并控制系统。
        目前没有详细漏洞细节提供。
        

- 公告与补丁

        厂商补丁:
        Microsoft
        ---------
        Microsoft已经为此发布了一个安全公告(MS04-011)以及相应补丁:
        MS04-011:Security Update for Microsoft Windows (835732)
        链接:
        http://www.microsoft.com/technet/security/bulletin/MS04-011.mspx

        补丁下载:
        Microsoft Windows XP and Microsoft Windows XP Service Pack 1
        
        http://www.microsoft.com/downloads/details.aspx?FamilyId=3549EA9E-DA3F-43B9-A4F1-AF243B6168F3&displaylang=en

        
        Microsoft Windows XP 64-Bit Edition Service Pack 1
        
        http://www.microsoft.com/downloads/details.aspx?FamilyId=C6B55EF2-D9FE-4DBE-AB7D-73A20C82FF73&displaylang=en

        
        Microsoft Windows XP 64-Bit Edition Version 2003
        
        http://www.microsoft.com/downloads/details.aspx?FamilyId=C207D372-E883-44A6-A107-6CD2D29FC6F5&displaylang=en

- 漏洞信息

5255
Microsoft Windows Management Privilege Escalation
Local Access Required Authentication Management
Loss of Integrity
Exploit Unknown

- 漏洞描述

Windows contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an attacker is able to create a task which will execute with System privileges. This flaw may lead to a loss of integrity.

- 时间线

2004-04-13 Unknow
Unknow Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

- 相关参考

- 漏洞作者

- 漏洞信息

Microsoft Windows Management Local Privilege Escalation Vulnerability
Access Validation Error 10125
No Yes
2004-04-13 12:00:00 2007-10-02 06:09:00
The vendor announced this vulnerability.

- 受影响的程序版本

Microsoft Windows XP Professional SP1
Microsoft Windows XP Professional
Microsoft Windows XP Media Center Edition
Microsoft Windows XP Home SP1
Microsoft Windows XP Home
Microsoft Windows XP 64-bit Edition Version 2003 SP1
Microsoft Windows XP 64-bit Edition Version 2003
Microsoft Windows XP 64-bit Edition SP1
Microsoft Windows XP 64-bit Edition
Avaya S8100 Media Servers 0
+ Microsoft Windows 2000 Server
+ Microsoft Windows NT Server 4.0 SP6a
Avaya S3400 Message Application Server 0
+ Microsoft Windows 2000 Server
Avaya IP600 Media Servers
Avaya DefinityOne Media Servers

- 漏洞讨论

Microsoft Windows Management is prone to a local privilege-escalation vulnerability that may allow a local attacker to execute arbitrary attacker-supplied code with SYSTEM privileges.

- 漏洞利用

Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.

- 解决方案

Microsoft has released a security bulletin and fixes to address this issue. Please see the references for more information.


Microsoft Windows XP Home

Microsoft Windows XP 64-bit Edition Version 2003

Microsoft Windows XP Home SP1

Microsoft Windows XP Professional

Microsoft Windows XP 64-bit Edition Version 2003 SP1

Microsoft Windows XP Professional SP1

Microsoft Windows XP 64-bit Edition SP1

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站