首页 -> 安全研究
安全研究
安全漏洞
Microsoft Outlook 2002 Email头处理远程拒绝服务攻击漏洞(MS02-067)
发布日期:2002-12-04
更新日期:2002-12-10
受影响系统:
Microsoft Outlook 2002描述:
- Microsoft Windows XP Professional SP1
- Microsoft Windows XP Professional
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Home
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
Microsoft Outlook 2002 SP1
- Microsoft Windows XP Professional SP1
- Microsoft Windows XP Professional
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Home
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
Microsoft Outlook 2002 SP2
- Microsoft Windows XP Professional SP1
- Microsoft Windows XP Professional
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Home
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows ME
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
BUGTRAQ ID: 6319
CVE(CAN) ID: CVE-2002-1255
Microsoft Outlook 2002是一款由微软公司开发和维护的邮件客户端。
Microsoft Outlook 2002客户端不能正确处理特殊畸形邮件头信息,远程攻击者可以利用这个漏洞发送恶意邮件而导致Outlook 2002不能继续接收其他正常邮件。
Outlook在接收到邮件时会处理包括邮件来自何方,目的地址,和信息属性等信息。Outlook 2002在处理邮件头信息时存在漏洞。攻击者可以发送特殊畸形EMAIL给有此漏洞的Outlook 2002用户,可导致Outlook 2002不能处理此邮件,而停止对更多正常邮件的处理,用户必须删除此邮件,或者通过其他邮件接收工具Outlook Web Access或Outlook Express进行处理。
<*来源:Microsoft Security Bulletin
链接:http://www.microsoft.com/technet/security/bulletin/MS02-067.asp
*>
建议:
厂商补丁:
Microsoft
---------
Microsoft已经为此发布了一个安全公告(MS02-067)以及相应补丁:
MS02-067:E-mail Header Processing Flaw Could Cause Outlook 2002 to Fail (331866)
链接:http://www.microsoft.com/technet/security/bulletin/MS02-067.asp
补丁下载:
* Microsoft Outlook 2002:
http://office.microsoft.com/downloads/2002/olk1005.aspx
Note: This and other Office updates can be obtained at
http://office.microsoft.com/productupdates.
浏览次数:3453
严重程度:0(网友投票)
绿盟科技给您安全的保障