CVE-2004-1038
CVSS7.2
发布时间 :2005-03-01 00:00:00
修订时间 :2016-10-17 22:50:55
NMCO    

[原文]A design error in the IEEE1394 specification allows attackers with physical access to a device to read and write to sensitive memory using a modified FireWire/IEEE 1394 client, thus bypassing intended restrictions that would normally require greater degrees of physical access to exploit. NOTE: this was reported in 2008 to affect Windows Vista, but some Linux-based operating systems have protection mechanisms against this attack.


[CNNVD]IEEE1394规格 权限绕过泄露漏洞(CNNVD-200503-010)

        IEEE1394规格中存在设计错误,可物理访问设备的攻击者使用修改后的FireWire/IEEE 1394客户端,然后绕过通常需要较高物理访问exploit权限的专门限制,便可读写敏感存储区。

- CVSS (基础分值)

CVSS分值: 7.2 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1038
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1038
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200503-010
(官方数据源) CNNVD

- 其它链接及资源

http://it.slashdot.org/article.pl?sid=08/03/04/1258210
(UNKNOWN)  MISC  http://it.slashdot.org/article.pl?sid=08/03/04/1258210
http://marc.info/?l=bugtraq&m=109881362530790&w=2
(UNKNOWN)  BUGTRAQ  20041026 pacsec.jp advisory: Firewire/IEEE 1394 Considered Harmful to Physical Security
http://md.hudora.de/presentations/firewire/2005-firewire-cansecwest.pdf
(UNKNOWN)  MISC  http://md.hudora.de/presentations/firewire/2005-firewire-cansecwest.pdf
http://pacsec.jp/advisories.html
(UNKNOWN)  MISC  http://pacsec.jp/advisories.html
http://storm.net.nz/projects/16
(UNKNOWN)  MISC  http://storm.net.nz/projects/16
http://storm.net.nz/static/files/ab_firewire_rux2k6-final.pdf
(UNKNOWN)  MISC  http://storm.net.nz/static/files/ab_firewire_rux2k6-final.pdf
http://www.sec-consult.com/fileadmin/Whitepapers/Vista_Physical_Attacks.pdf
(UNKNOWN)  MISC  http://www.sec-consult.com/fileadmin/Whitepapers/Vista_Physical_Attacks.pdf
http://www.securityfocus.com/archive/1/archive/1/489163/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080305 Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489175/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080305 Re: Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489189/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080305 RE: Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489212/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080306 Re: Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489257/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080306 RE: Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489269/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080307 Re: Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489295/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080308 Re: [Full-disclosure] Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489296/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080308 RE: [Full-disclosure] Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489322/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080309 Re: [Full-disclosure] Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489330/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080310 RE: [Full-disclosure] Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489335/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080309 Re: Firewire Attack on Windows Vista
http://www.securityfocus.com/archive/1/archive/1/489342/100/0/threaded
(UNKNOWN)  BUGTRAQ  20080310 Re: [Full-disclosure] Firewire Attack on Windows Vista
http://www.theage.com.au/news/security/hack-into-a-windows-pc-no-password-needed/2008/03/04/1204402423638.html
(UNKNOWN)  MISC  http://www.theage.com.au/news/security/hack-into-a-windows-pc-no-password-needed/2008/03/04/1204402423638.html
http://xforce.iss.net/xforce/xfdb/18041
(UNKNOWN)  XF  firewire-ieee1394-interface-installed(18041)

- 漏洞信息

IEEE1394规格 权限绕过泄露漏洞
高危 未知
2005-03-01 00:00:00 2005-10-20 00:00:00
本地  
        IEEE1394规格中存在设计错误,可物理访问设备的攻击者使用修改后的FireWire/IEEE 1394客户端,然后绕过通常需要较高物理访问exploit权限的专门限制,便可读写敏感存储区。

- 公告与补丁

        

- 漏洞信息

44960
Multiple Operating System Firewire/IEEE 1394 Device Local Authentication Bypass

- 漏洞描述

- 时间线

2004-10-26 Unknow
Unknow Unknow

- 解决方案

Products

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站