Welcome 微信登录
编程资源 图片资源库 蚂蚁家优选 PDF转换器

首页 / 操作系统 / Linux / Oracle Siebel Option Pack for IE ActiveX控件内存初始化漏洞

Oracle Siebel Option Pack for IE ActiveX控件内存初始化漏洞发布日期:2010-08-06
更新日期:2010-08-09受影响系统:
Oracle Siebel Option Pack for IE 7.x
描述:
--------------------------------------------------------------------------------
CVE ID: CVE-2009-3737Siebel Option Pack for IE是Oracle Siebel CRM软件所提供的ActiveX控件。Siebel Option Pack for IE ActiveX控件没有正确地初始化由NewBusObj()方式所使用的内存,用户受骗访问了恶意网页并用特制参数调用该方式就可能导致执行任意代码。<*来源:Will Dormann
 
  链接:http://secunia.com/advisories/40804/
        http://www.kb.cert.org/vuls/id/174089
*>建议:
--------------------------------------------------------------------------------
临时解决方法:* 将以下文本保存为.REG文件并导入:Windows Registry Editor Version 5.00[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerActiveX Compatibility{07070bfd-c501-4899-934d-0b96a9f70795}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoftInternet ExplorerActiveX Compatibility{07070bfd-c501-4899-934d-0b96a9f70795}]
"Compatibility Flags"=dword:00000400[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerActiveX Compatibility{26bac093-997c-4084-bad6-c35f5d67ea99}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoftInternet ExplorerActiveX Compatibility{26bac093-997c-4084-bad6-c35f5d67ea99}]
"Compatibility Flags"=dword:00000400[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerActiveX Compatibility{45874228-a445-40dc-962b-ec15559b1741}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoftInternet ExplorerActiveX Compatibility{45874228-a445-40dc-962b-ec15559b1741}]
"Compatibility Flags"=dword:00000400[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerActiveX Compatibility{631F0C94-C02F-40AC-A31B-DDC39731FC81}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoftInternet ExplorerActiveX Compatibility{631F0C94-C02F-40AC-A31B-DDC39731FC81}]
"Compatibility Flags"=dword:00000400[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerActiveX Compatibility{68cdb19a-6305-4589-8c35-41e3502cd451}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoftInternet ExplorerActiveX Compatibility{68cdb19a-6305-4589-8c35-41e3502cd451}]
"Compatibility Flags"=dword:00000400[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerActiveX Compatibility{81a81dd2-a261-442a-b9b1-df10a2542020}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoftInternet ExplorerActiveX Compatibility{81a81dd2-a261-442a-b9b1-df10a2542020}]
"Compatibility Flags"=dword:00000400厂商补丁:Oracle
------
目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:http://www.oracle.comNovell iPrint服务器ipsmd组件栈溢出漏洞OpenSSL ssl3_get_key_exchange()释放后使用漏洞相关资讯      漏洞 
  • 快递官网漏洞泄露 1400 万用户信息  (08/12/2014 08:37:42)
  • 要389目录服务器访问绕过漏洞  (10/01/2012 09:18:08)
  • ASUS Net4Switch "ipswcom.dll"   (03/02/2012 09:32:42)
  • 软件漏洞是一笔大买卖!  (10/06/2012 08:28:32)
  • PHPCMS V9.1.13任意文件包含漏洞分  (08/01/2012 07:23:17)
  • Open Handset Alliance Android   (03/01/2012 06:59:34)
本文评论 查看全部评论 (0)
表情: 姓名: 字数


评论声明
  • 尊重网上道德,遵守中华人民共和国的各项有关法律法规
  • 承担一切因您的行为而直接或间接导致的民事或刑事法律责任
  • 版权所有©石家庄振强科技有限公司2024 冀ICP备08103738号-5 网站地图