-
-
[转帖]cve-2013-3918
-
发表于: 2013-12-31 15:11 2786
-
CVE-2013-3918是由于Internet Explorer 7, 8, 9, 10的ActiveX控件中存在内存访问错误,攻击者可利用此漏洞在当前登录用户上下文中执行任意代码。
漏洞来源细节:
样本来源:39dK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4y4W2j5$3&6A6N6g2)9J5k6h3y4G2L8g2)9J5c8X3u0D9L8$3N6Q4x3V1k6U0N6X3g2Q4x3X3b7J5x3o6p5K6i4K6u0V1x3K6V1I4z5q4)9J5k6r3g2^5M7r3I4G2K9i4c8Q4x3X3c8S2L8X3q4D9P5i4y4A6M7#2)9J5c8R3`.`.
漏洞细节:1a0K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4c8W2j5$3S2F1k6i4c8Q4x3X3g2E0K9h3y4J5L8%4y4G2k6Y4c8Q4x3X3g2U0L8$3#2Q4x3V1k6W2L8W2)9J5k6s2g2K6i4K6u0r3M7$3g2U0N6i4u0A6N6s2W2Q4x3V1k6T1N6h3I4D9k6i4c8A6L8W2)9J5c8X3#2K6x3e0y4Q4x3X3b7H3z5e0l9`.
利用样本:268K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3A6K6N6h3&6H3j5h3y4C8i4K6u0W2K9X3g2W2K9#2)9J5k6h3!0J5k6#2)9J5c8W2)9K6c8Y4u0W2M7r3!0J5N6q4)9K6c8o6m8X3k6e0R3$3j5U0q4S2y4X3k6U0x3U0N6V1j5X3b7@1x3e0x3@1k6o6V1$3k6e0j5^5j5U0V1I4y4e0x3$3z5o6u0U0j5K6j5^5x3K6p5`.
漏洞相关环境:
操作系统:
Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista Service Pack 2
Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-based Systems Service Pack 2
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
浏览器:
IE 7, 8, 9, and 10.
貌似很强大,我找不到适用的ROP,有高手整理一下
漏洞来源细节:
样本来源:39dK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4y4W2j5$3&6A6N6g2)9J5k6h3y4G2L8g2)9J5c8X3u0D9L8$3N6Q4x3V1k6U0N6X3g2Q4x3X3b7J5x3o6p5K6i4K6u0V1x3K6V1I4z5q4)9J5k6r3g2^5M7r3I4G2K9i4c8Q4x3X3c8S2L8X3q4D9P5i4y4A6M7#2)9J5c8R3`.`.
漏洞细节:1a0K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4c8W2j5$3S2F1k6i4c8Q4x3X3g2E0K9h3y4J5L8%4y4G2k6Y4c8Q4x3X3g2U0L8$3#2Q4x3V1k6W2L8W2)9J5k6s2g2K6i4K6u0r3M7$3g2U0N6i4u0A6N6s2W2Q4x3V1k6T1N6h3I4D9k6i4c8A6L8W2)9J5c8X3#2K6x3e0y4Q4x3X3b7H3z5e0l9`.
利用样本:268K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3A6K6N6h3&6H3j5h3y4C8i4K6u0W2K9X3g2W2K9#2)9J5k6h3!0J5k6#2)9J5c8W2)9K6c8Y4u0W2M7r3!0J5N6q4)9K6c8o6m8X3k6e0R3$3j5U0q4S2y4X3k6U0x3U0N6V1j5X3b7@1x3e0x3@1k6o6V1$3k6e0j5^5j5U0V1I4y4e0x3$3z5o6u0U0j5K6j5^5x3K6p5`.
漏洞相关环境:
操作系统:
Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista Service Pack 2
Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-based Systems Service Pack 2
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
浏览器:
IE 7, 8, 9, and 10.
貌似很强大,我找不到适用的ROP,有高手整理一下
赞赏
|
|
|---|---|
|
|
谁下载
winndy
HappyKL
网络游侠
luohb
ToNS
Sportsboy
lizhenhuan
清新阳光
reversing
没有姓名
qweSDFcvb
liudahai
karpenter
hnzzdkp
bestshow
lhao
accessd
carlshen
肯特awp
Vsbat
阳光code
white、、
dost
凭凡
hai海豚
jacktang
天下皆白
dswang
lastnoname
西川
菠萝蜜
rowp
宝宝的xql
sjsme
户大
olderlong
squallqz
goabout
yisuoyanyu
shidafuvxv
counsellor
LeavesBNW
火星farmer
qhacker
codlit
lynudt
mengjiangs
double飞
neilma
tpol
优化大师
沉默堡垒
xiaoaabc
qweasdasde
暗香沉浮
谁下载
winndy
millennium
BebEtter
HappyKL
lingyu
网络游侠
slavelord
Sportsboy
lizhenhuan
jxpjs
清新阳光
reversing
qweSDFcvb
supermilg
jingetiema
karpenter
hnzzdkp
bestshow
lhao
xiaolongo
iloveqqp
carlshen
肯特awp
artake
阳光code
fanliqwe
white、、
dost
凭凡
hai海豚
jacktang
魔造师
天下皆白
dswang
lastnoname
西川
宝宝的xql
sjsme
rekken
户大
olderlong
squallqz
goabout
yisuoyanyu
shidafuvxv
counsellor
msnhh
LeavesBNW
火星farmer
qhacker
codlit
lynudt
mengjiangs
double飞
tpol
优化大师
沉默堡垒
xiaoaabc
qweasdasde
暗香沉浮
赞赏
雪币:
留言: