漏洞信息详情
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS MobileSafari OfficeArtBlip解析整数溢出漏洞
- CNNVD编号:CNNVD-201103-179
- 危害等级: 中危
- CVE编号: CVE-2011-1417
- 漏洞类型: 数字错误
- 发布时间: 2011-03-14
- 威胁类型: 远程
- 更新时间: 2011-07-12
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源:
漏洞简介
在CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Mac OS X 10.6.7之前版本和CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS 4.2.7之前版本,4.3.2之前的4.3.x版本中的MobileSafari中使用的QuickLook在解析OfficeArtBlip时存在整数溢出漏洞。当处理OfficeArtMetafileHeader时,进程信任cbSize字段并在分配前对其执行运算工作。由于没有检查结果的溢出性,后续分配会不足。在复制到此缓冲区时,内存可被破坏导致以当前用户权限执行任意代码。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: http://secunia.com/advisories/44154 http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT4581 http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT4607 http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT4606
参考网址
来源: www.zdnet.com
链接:http://www.zdnet.com/blog/security/charlie-miller-wins-pwn2own-again-with-iPhone-4-exploit/8378
来源: dvlabs.tippingpoint.com
链接:http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011
来源:NSFOCUS 名称:17340 链接:http://www.nsfocus.net/vulndb/17340 来源:NSFOCUS 名称:16732 链接:http://www.nsfocus.net/vulndb/16732 来源:NSFOCUS 名称:16642 链接:http://www.nsfocus.net/vulndb/16642 来源:NSFOCUS 名称:16640 链接:http://www.nsfocus.net/vulndb/16640
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.3.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.3.0
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.0.0
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.0.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:1.0.2
补丁
暂无
评论