CVE-2005-3265
CVSS9.3
发布时间 :2005-10-27 06:02:00
修订时间 :2011-03-07 21:26:11
NMCOS    

[原文]Buffer overflow in Skype for Windows 1.1.x.0 through 1.4.x.83 allows remote attackers to execute arbitrary code via (1) callto:// and (2) skype:// links, or (3) a non-standard VCARD, possibly due to an underlying error in the SysUtils.WideFmtStr Delphi routine.


[CNNVD]Skype Technologies Skype多个缓冲区溢出漏洞(CNNVD-200510-227)

        TOM-Skype是超清晰网络电话工具,电脑间通话永远免费的软件。
        Windows 1.1.x.0至1.4.x.83的Skype存在缓冲区溢出。远程攻击者可以借助(1) callto://和(2) skype://链接或(3) 非标准VCARD,执行任意代码。可能由SysUtils.WideFmtStr Delphi例行程序的底层错误所致。

- CVSS (基础分值)

CVSS分值: 9.3 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: MEDIUM [漏洞利用存在一定的访问条件]
攻击向量: NETWORK [攻击者不需要获取内网访问权或本地访问权]
身份认证: NONE [漏洞利用无需身份认证]

- CWE (弱点类目)

CWE-119 [内存缓冲区边界内操作的限制不恰当]

- CPE (受影响的平台与产品)

cpe:/a:skype_technologies:skype:1.3.0.54
cpe:/a:skype_technologies:skype:1.3.0.55
cpe:/a:skype_technologies:skype:1.1.0.73
cpe:/a:skype_technologies:skype:1.1.0.79
cpe:/a:skype_technologies:skype:1.2.0.37
cpe:/a:skype_technologies:skype:1.4.0.78
cpe:/a:skype_technologies:skype:1.1.0.61
cpe:/a:skype_technologies:skype:1.2.0.46
cpe:/a:skype_technologies:skype:1.3.0.51
cpe:/a:skype_technologies:skype:1.3.0.66
cpe:/a:skype_technologies:skype:1.3.0.57
cpe:/a:skype_technologies:skype:1.2.0.41
cpe:/a:skype_technologies:skype:1.2.0.0
cpe:/a:skype_technologies:skype:1.4.0.83
cpe:/a:skype_technologies:skype:1.3.0.48
cpe:/a:skype_technologies:skype:1.3.0.45
cpe:/a:skype_technologies:skype:1.4.0.71
cpe:/a:skype_technologies:skype:1.3.0.60

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3265
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3265
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200510-227
(官方数据源) CNNVD

- 其它链接及资源

http://www.kb.cert.org/vuls/id/930345
(UNKNOWN)  CERT-VN  VU#930345
http://www.kb.cert.org/vuls/id/668193
(UNKNOWN)  CERT-VN  VU#668193
http://www.pentest.co.uk/documents/ptl-2005-01.html
(VENDOR_ADVISORY)  MISC  http://www.pentest.co.uk/documents/ptl-2005-01.html
http://skype.com/security/skype-sb-2005-02.html
(VENDOR_ADVISORY)  CONFIRM  http://skype.com/security/skype-sb-2005-02.html
http://xforce.iss.net/xforce/xfdb/22848
(UNKNOWN)  XF  skype-uri-bo(22848)
http://www.vupen.com/english/advisories/2005/2197
(UNKNOWN)  VUPEN  ADV-2005-2197
http://www.securityfocus.com/bid/15190
(UNKNOWN)  BID  15190
http://secunia.com/advisories/17305/
(UNKNOWN)  SECUNIA  17305

- 漏洞信息

Skype Technologies Skype多个缓冲区溢出漏洞
高危 缓冲区溢出
2005-10-27 00:00:00 2005-11-02 00:00:00
远程  
        TOM-Skype是超清晰网络电话工具,电脑间通话永远免费的软件。
        Windows 1.1.x.0至1.4.x.83的Skype存在缓冲区溢出。远程攻击者可以借助(1) callto://和(2) skype://链接或(3) 非标准VCARD,执行任意代码。可能由SysUtils.WideFmtStr Delphi例行程序的底层错误所致。

- 公告与补丁

        目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
        Skype Technologies Skype 1.1 .0.0
        Skype Technologies Skype 1.4.*.84
        http://www.skype.com/products/skype/windows/
        Skype Technologies Skype 1.4 .0.83
        Skype Technologies Skype 1.4.*.84
        http://www.skype.com/products/skype/windows/

- 漏洞信息

20307
Skype for Windows Crafted callto/skype URL Overflow
Input Manipulation
Loss of Integrity

- 漏洞描述

Unknown or Incomplete

- 时间线

2005-10-25 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Skype Technologies Skype Multiple Buffer Overflow Vulnerabilities
Boundary Condition Error 15190
Yes No
2005-10-25 12:00:00 2005-10-25 12:00:00
Discovery credited to Mark Rowe of Pentest Limited.

- 受影响的程序版本

Skype Technologies Skype 1.4 .0.83
Skype Technologies Skype 1.1 .0.0

- 漏洞讨论

Skype is prone to multiple buffer overflow vulnerabilities. Successful exploitation of these issues could result in a denial of service or arbitrary code execution in the context of the user running the application.

These issues affect Skype for Windows releases 1.1.*.0 through 1.4.*.83.

- 漏洞利用

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.

- 解决方案

This issue has been addressed in Skype for Windows 1.4.*.84 and later.


Skype Technologies Skype 1.1 .0.0

Skype Technologies Skype 1.4 .0.83

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站