Microsoft Word 2000 Unspecified Code Execution Exploit (0day)

pub!1c

魔

团队执行官

Rank: 8 Rank: 8

E.S.T核心成员

帖子: 3926
精华: 128
积分: 209876
阅读权限: 200
性别: 男
在线时间: 1117 小时
注册时间: 2007-10-23
最后登录: 2008-11-17

资料收集奖运营支持奖

发短消息
加为好友
当前离线

楼主大中小发表于 2007-2-4 11:46 只看该作者

Microsoft Word 2000 Unspecified Code Execution Exploit (0day)

复制内容到剪贴板

代码:

+ Title: Microsoft Word 2000 Unspecified Code Execution Vulnerability Exploit (0-day)

 

+ code by xCuter (BongGoo Kang - [email]xcuter@returnaddr.org[/email])

        

+ Critical: High Critical

 

+ Impact: MS Word 2000 -> Could Allow Arbitrary Command Execution

       MS word 2003 -> Attempts against Word 2003/XP will consume all CPU resources and will cause a denial of service

 

+ Where: From remote

 

+ Tested Operating System: Windows XP SP2 FULL PATCHED (Korean Language)

 

+ Tested Software: Microsoft(R) Word 2000 (9.0.2720)

 

+ Solution: Not Patched (zero-day)

 

+ Description:

  When a user opens a specially crafted Word file using a malformed string,

  it may corrupt system memory in such a way that an attacker could execute arbitrary code

  This exploit will be execute command - &#39;CMD.EXE&#39;

 

+ Reference : [url]http://www.microsoft.com/technet/security/advisory/932114.mspx[/url] - Microsoft Security Advisory (932114)

附件

word2000exp.zip (33 KB): 2007-2-4 11:46, 下载次数: 141

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » Microsoft Word 2000 Unspecified Code Execution Exploit (0day)