首页 -> 安全研究
安全研究
安全漏洞
Microsoft COM Internet Services (CIS) RPC Over HTTP远程拒绝服务漏洞(MS04-012)
发布日期:2004-04-13
更新日期:2004-04-16
受影响系统:
Microsoft Windows XP描述:
Microsoft Windows NT 4.0
Microsoft Windows 2003
Microsoft Windows 2000
BUGTRAQ ID: 10123
CVE(CAN) ID: CVE-2003-0807
Remote Procedure Call (RPC)是Windows 操作系统使用的一种远程过程调用协议,RPC提供进程间交互通信机制,允许在某台计算机上运行程序的无缝地在远程系统上执行代码。协议本身源自开放软件基金会的RPC协议,Microsoft在其基础上增加了自己的一些扩展。
Windows的COM Internet服务及RPC over HTTP代理组件存在问题,远程攻击者可以利用这个漏洞对此服务进行拒绝服务攻击。
当通过COM CIS及RPC Over HTTP转发请求到后台系统时,攻击者可以通过使用特殊构建的消息应答此请求,使得受此漏洞影响的组件停止对后续请求的响应。
<*来源:Qualys
链接:http://www.microsoft.com/technet/security/bulletin/MS04-012.mspx
*>
建议:
临时解决方法:
如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁:
* 如果不需要CIS或RPC Over HTTP服务,参看如下连接关闭:
http://support.microsoft.com/default.aspx?scid=kb;en-us;825819
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/rpc/rpc/rpc_over_http_security.asp
厂商补丁:
Microsoft
---------
Microsoft已经为此发布了一个安全公告(MS04-012)以及相应补丁:
MS04-012:Cumulative Update for Microsoft RPC/DCOM (828741)
链接:http://www.microsoft.com/technet/security/bulletin/MS04-012.mspx
补丁下载:
Microsoft Windows NT? Workstation 4.0 Service Pack 6a
http://www.microsoft.com/downloads/details.aspx?FamilyId=4ACB5BD6-A0BF-40BC-8955-D833923642EF&displaylang=en
Microsoft Windows NT Server 4.0 Service Pack 6a
http://www.microsoft.com/downloads/details.aspx?FamilyId=D4F2AD32-FE74-4DA1-AEAE-80897AC86720&displaylang=en
Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6
http://www.microsoft.com/downloads/details.aspx?FamilyId=5B29E35D-E5DA-4486-B7EB-D54C7398142C&displaylang=en
Microsoft Windows 2000 Service Pack 2, Microsoft Windows 2000 Service Pack 3, and Microsoft Windows 2000 Service Pack 4
http://www.microsoft.com/downloads/details.aspx?FamilyId=FBD38C36-D1D3-47A2-A5D5-6C8F27FDCC40&displaylang=en
Microsoft Windows XP and Microsoft Windows XP Service Pack 1
http://www.microsoft.com/downloads/details.aspx?FamilyId=D488BBBB-DA77-448D-8FF0-0A649A0D8FC3&displaylang=en
Microsoft Windows XP 64-Bit Edition Service Pack 1
http://www.microsoft.com/downloads/details.aspx?FamilyId=4C3ED21D-FF40-4C9D-99DD-1632E43C1645&displaylang=en
Microsoft Windows XP 64-Bit Edition Version 2003
http://www.microsoft.com/downloads/details.aspx?FamilyId=75A08528-5E99-4BE0-8E97-F1C9789611EB&displaylang=en
Microsoft Windows Server? 2003
http://www.microsoft.com/downloads/details.aspx?FamilyId=07317CE9-520D-4574-B575-5FB85DA9A4D7&displaylang=en
Microsoft Windows Server 2003 64-Bit Edition
http://www.microsoft.com/downloads/details.aspx?FamilyId=75A08528-5E99-4BE0-8E97-F1C9789611EB&displaylang=en
浏览次数:3735
严重程度:1(网友投票)
绿盟科技给您安全的保障