漏洞信息详情
Microsoft Windows LSASS服务ISAKMP消息远程拒绝服务漏洞
- CNNVD编号:CNNVD-200912-117
- 危害等级: 中危
- CVE编号: CVE-2009-3675
- 漏洞类型: 资源管理错误
- 发布时间: 2009-12-09
- 威胁类型: 远程
- 更新时间: 2009-12-10
- 厂 商: microsoft
- 漏洞来源: Microsoft
漏洞简介
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。
Windows系统上的本地安全权威子系统服务(LSASS)没有正确地处理特制的ISAKMP消息,如果通过认证的远程攻击者在通过IPSEC协议与受影响系统上的LSASS通讯期间发送了特制的ISAKMP消息,就可以耗尽系统资源。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Microsoft Windows XP Media Center Edition SP2
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows 2000 Advanced Server SP4
Microsoft Security Update for Windows 2000 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=560e01db-5f59 -4ef1-9406-f5d7e0fd4128
3DM Software Disk Management Software SP2
Microsoft Security Update for Windows Server 2003 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=a779aae1-7724 -4458-94fb-a2343356ecae
Microsoft Windows Server 2003 Datacenter x64 Edition SP2
Microsoft Security Update for Windows Server 2003 x64 Edition (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=a8a9bf12-4ad6 -49fd-b2b7-f379dc3309d2
Microsoft Windows Server 2003 Standard Edition SP2
Microsoft Security Update for Windows Server 2003 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=a779aae1-7724 -4458-94fb-a2343356ecae
Microsoft Windows XP Home SP2
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows 2000 Datacenter Server SP4
Microsoft Security Update for Windows 2000 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=560e01db-5f59 -4ef1-9406-f5d7e0fd4128
Microsoft Windows XP Tablet PC Edition SP2
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows XP Media Center Edition SP3
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows Server 2003 Itanium SP2
Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=f5b003ad-af25 -488a-91fb-98835a0bfeac
Microsoft Windows Server 2003 Web Edition SP2
Microsoft Security Update for Windows Server 2003 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=a779aae1-7724 -4458-94fb-a2343356ecae
Microsoft Windows XP Home SP3
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Security Update for Windows XP x64 Edition (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=c2bbf515-f81a -436b-947b-cbf2db85fdd9
Microsoft Windows XP Professional SP3
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows XP Professional SP2
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
Microsoft Windows 2000 Server SP4
Microsoft Security Update for Windows 2000 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=560e01db-5f59 -4ef1-9406-f5d7e0fd4128
Microsoft Windows Server 2003 Enterprise x64 Edition SP2
Microsoft Security Update for Windows Server 2003 x64 Edition (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=a8a9bf12-4ad6 -49fd-b2b7-f379dc3309d2
Microsoft Windows 2000 Professional SP4
Microsoft Security Update for Windows 2000 (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=560e01db-5f59 -4ef1-9406-f5d7e0fd4128
Microsoft Windows XP Tablet PC Edition SP3
Microsoft Security Update for Windows XP (KB974392)
http://www.microsoft.com/downloads/details.aspx?familyid=5448b168-6bf7 -4bae-9627-b88d76c4d5c5
参考网址
来源: MS 名称: MS09-069 链接:http://www.microsoft.com/technet/security/Bulletin/MS09-069.mspx
受影响实体
- Microsoft Windows_xp:Sp2:X64
- Microsoft Windows_2003_server:-:Sp2:Itanium
- Microsoft Windows_2003_server:-:Sp2:X64
- Microsoft Windows_xp:Sp3
- Microsoft Windows_2003_server:Sp2
补丁
暂无
评论