[SECURITY-L] CAIS-Alerta: Vulnerabilidade no Windows Help e Support Center (825119)
Security Team - UNICAMP
security em unicamp.br
Seg Out 20 13:38:10 -02 2003
----- Forwarded message from Centro de Atendimento a Incidentes de Seguranca <cais em cais.rnp.br> -----
From: Centro de Atendimento a Incidentes de Seguranca <cais em cais.rnp.br>
Subject: CAIS-Alerta: Vulnerabilidade no Windows Help e Support Center (825119)
To: rnp-alerta em cais.rnp.br, rnp-seg em cais.rnp.br
Date: Wed, 15 Oct 2003 16:12:32 -0300 (BRST)
-----BEGIN PGP SIGNED MESSAGE-----
Prezados,
O CAIS esta' repassando o alerta divulgado pela Microsoft, "Microsoft
Security Bulletin MS03-044: Buffer Overrun in Windows Help and Support
Center Could Lead to System Compromise (825119)", que trata da
identificacao de uma vulnerabilidade no Windows Help e Support Center que
pode permitir a um atacante remoto a execucao de codigo arbitrario.
Sistemas Afetados:
. Microsoft Windows Millennium Edition
. Microsoft Windows NT Workstation 4.0, Service Pack 6a
. Microsoft Windows NT Server 4.0, Service Pack 6a
. Microsoft Windows NT Server 4.0, Terminal Server Edition, Service Pack 6
. Microsoft Windows 2000, Service Pack 2
. Microsoft Windows 2000, Service Pack 3, Service Pack 4
. Microsoft Windows XP Gold, Service Pack 1
. Microsoft Windows XP 64-bit Edition
. Microsoft Windows XP 64-bit Edition Version 2003
. Microsoft Windows Server 2003
. Microsoft Windows Server 2003 64-bit Edition
Correções disponíveis:
A correção consiste na aplicação do patch recomendado pela Microsoft e
disponível em:
. Microsoft Windows Millennium Edition
http://www.microsoft.com/downloads/details.aspx?FamilyId=7D6F4228-0E31-4F46-9795-5CDD566BB3B8&displaylang=en
. Microsoft Windows NT Workstation 4.0, Service Pack 6a
http://www.microsoft.com/downloads/details.aspx?FamilyId=88BCDC9A-E370-47D8-B818-4E659C7F95AE&displaylang=en
. Microsoft Windows NT Server 4.0, Service Pack 6a
http://www.microsoft.com/downloads/details.aspx?FamilyId=735602AC-BA6E-40D4-8A20-3441F02A25CB&displaylang=en
. Microsoft Windows NT Server 4.0, Terminal Server Edition, Service Pack 6
http://www.microsoft.com/downloads/details.aspx?FamilyId=5C16FFAB-9CE7-4444-9AA5-BC6ABE3FD479&displaylang=en
. Microsoft Windows 2000, Service Pack 2
http://www.microsoft.com/downloads/details.aspx?FamilyId=62B23A0C-67F0-4F11-A95E-E4FB080A63C6&displaylang=en
. Microsoft Windows 2000, Service Pack 3, Service Pack 4
http://www.microsoft.com/downloads/details.aspx?FamilyId=C2AB63FD-35CA-4D33-9F8C-8BF5DE2D1117&displaylang=en
. Microsoft Windows XP Gold, Service Pack 1
http://www.microsoft.com/downloads/details.aspx?FamilyId=84317458-0BEB-4B2C-A095-66CA09DFDAC6&displaylang=en
. Microsoft Windows XP 64-bit Edition
http://www.microsoft.com/downloads/details.aspx?FamilyId=97F4868A-5E41-4657-B9FC-7EA13954B982&displaylang=en
. Microsoft Windows XP 64-bit Edition Version 2003
http://www.microsoft.com/downloads/details.aspx?FamilyId=8B990946-84C8-4C91-899C-5A44EC13174E&displaylang=en
. Microsoft Windows Server 2003
http://www.microsoft.com/downloads/details.aspx?FamilyId=40F25862-A815-4674-9175-E3640E3EFD49&displaylang=en
. Microsoft Windows Server 2003 64-bit Edition
http://www.microsoft.com/downloads/details.aspx?FamilyId=8B990946-84C8-4C91-899C-5A44EC13174E&displaylang=en
Maiores informações:
http://www.microsoft.com/technet/security/bulletin/ms03-044.asp
Identificadores do CVE: CAN-2003-0711, (http://cve.mitre.org)
O CAIS recomenda aos administradores de plataformas Microsoft que
mantenham seus sistemas e aplicativos sempre atualizados.
Atenciosamente,
################################################################
# CENTRO DE ATENDIMENTO A INCIDENTES DE SEGURANCA (CAIS) #
# Rede Nacional de Ensino e Pesquisa (RNP) #
# #
# cais em cais.rnp.br http://www.cais.rnp.br #
# Tel. 019-37873300 Fax. 019-37873301 #
# Chave PGP disponivel http://www.rnp.br/cais/cais-pgp.key #
################################################################
Title: Buffer Overrun in Windows Help and Support Center Could Lead
to System Compromise (825119)
Date: October 15, 2003
Software: Microsoft Windows Millennium Edition; Microsoft Windows NT
Workstation 4.0, Service Pack 6a; Microsoft Windows NT Server 4.0, Service
Pack 6a; Microsoft Windows NT Server 4.0, Terminal Server Edition, Service
Pack 6; Microsoft Windows 2000, Service Pack 2; Microsoft Windows 2000,
Service Pack 3, Service Pack 4; Microsoft Windows XP Gold, Service Pack 1;
Microsoft Windows XP 64-bit Edition; Microsoft Windows XP 64-bit Edition
Version 2003; Microsoft Windows Server 2003; Microsoft Windows Server 2003
64-bit Edition
Impact: Remote Code Execution
Maximum Severity Rating: Critical
Bulletin: MS03-044
The Microsoft Security Response Center has released Microsoft
Security Bulletin MS03-044
What Is It?
The Microsoft Security Response Center has released Microsoft
Security Bulletin MS03-044 which concerns a vulnerability in the
above listed versions of Windows. Customers are advised to review
the information in the bulletin, test and deploy the patch
immediately in their environments, if applicable.
More information is now available at
http://www.microsoft.com/technet/security/bulletin/MS03-044.asp
If you have any questions regarding this alert please contact your
Technical Account Manager or Application Development Consultant.
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8
iQCVAwUBP42cJukli63F4U8VAQFHHQP/R1dwwJdNVV1eIHslhdjLnk8ZHwtI/E6E
Kanfo9ePWadBFKY6BLb+pJ/5TtrJUKEmvEio9Y7ANWJF6+uLfsFsL1FntOKzqGim
R8M6Or5ENne+B7sCeSf3wotuFD+B1fHaQ6OPWen+47YeFUf6fEvPCBzFxjClab4D
gFxmlHnONxQ=
=rl8v
-----END PGP SIGNATURE-----
----- End forwarded message -----
Mais detalhes sobre a lista de discussão SECURITY-L