회원가입메일  
   
 
> 취약성 정보
이름 Level 2, 645 Point bokdong2 2007-03-27 23:27:20
제목 SignKorea's ActiveX Buffer Overflow Vulnerability
Title: SignKorea's ActiveX Buffer Overflow Vulnerability

Version: SKCommAX ActiveX Control Module 7,2,0,2
         SKCommAX ActiveX Control Module(3280) 6,6,0,1

Discoverer: PARK, GYU TAE (saintl...@null2root.org)

Advisory No.: NRVA07-01

Critical: High critical

Impact: Gain remote user's privilege

Where: From remote

Operating System: Windows Only

Test Client System: Windows XP Service Pack 2 in KOREAN (Patched)
                    Windows XP Service Pack 2 in ENGLISH (Patched)

Solution Vendor: SignKorea, KOSCOM

Solution: Patched

Duration of patch: 6 Day(s) - don't ask me about this I don't know exactly

Notice: 17. 03. 2007 Initiate notified KISA(Korea Information Security
Agency)
        21. 03. 2007 Vendor response and confirmed vulnerability
        23. 03. 2007 Patched by vendor
        26. 03. 2007 Public disclosure

Des_+a_+cription:

The SKCommAX's ActiveX is common certification solution on the net
If citizen want to use Internet banking, Stock and so on like Online
banking services in Korea
then must be use PKI certification program like this ActiveX.

The SKCommAX's activex has one remote vulnerability (maybe)
If uses HTML file which was crafted by this vulnerability then you'll get
somebody's remote privilege.

See following detail describe:

SKCommAX's activex has DownloadCertificateExt() function. this function
requests two arguments(pszUserID and CertType).
This function didn't check pszUserID argument whether it's correct or not.
It's a pretty simple buffer overflow even Windows Environment.

EXPLOIT NOT INCLUDED HERE

You don't need exploit written by me bcoz you already known that

Greet: Null@Root Group, BugTruck Mailling and Information Security Team in
NCSoft.
--
Make Our Internet Secure With H4ck3rz
Level 6, 3710 Point ugg boots
Good ! Ilike it ! Welcome to read following news:<STRONG><A href="http://www.shoppingnikesb.com/">Nike dunk sb</A></STRONG>,<STRONG><A href="http://www.uggsvipshop.com/">Ugg boots</A></STRONG>,<STRONG><A href="http://www.hothotshoes.com/">Gucci shoes</A></STRONG>,<A href="http://www.shoppingnikesb.com/new-sb">new nike sb</A>,<A href="http://www.uggsvipshop.com/ugg-classic-short-boots.html">UGG Classic short boots</A>,<A href="http://www.shoppingnikesb.com/">cheap nike dunks</A>,<A href="http://www.shoppingtiffany.com/tiffany-rings">tiffany rings</A>,<A href="http://www.uggsvipshop.com/ugg-bailey-button-boots.html">UGG Bailey Button boots</A>,<A href="http://www.shoppingnikesb.com/nike-dunk-low">nike dunk low</A>,<A href="http://www.shoppingtiffany.com/tiffany-earrings">Tiffany Earrings</A>.

 2009.09.18 06:36

 

Level 3, 835 Point jkl338810
<a href="http://www.taipeilady.com" title="酒店兼差">酒店兼差</a> <a href="http://www.mashow.org/momo" title="酒店兼職">酒店兼職</a> <a href="http://www.mashow.org/girls" title="酒店工作">酒店工作</a> <a href="http://mypaper.pchome.com.tw/jkl338811" title="酒店上班">酒店上班</a> <a href="http://mypaper.pchome.com.tw/jkl338812" title="寒假打工">寒假打工</a> <a href="http://www.mashow.org" title="暑假打工">暑假打工</a> <a href="http://mypaper.pchome.com.tw/jkl338801" title="酒店">酒店</a> <a href="http://mypaper.pchome.com.tw/thomsan" title="禮服酒店">禮服酒店</a> <a href="http://tw.myblog.yahoo.com/jw!BIBoU5SeBRs21nb_ajFpncbTqXds" title="合法酒店經紀">合法酒店經紀</a> <a href="http://tw.myblog.yahoo.com/jw!qZ9n..6QEhhc0LkItOBm" title="兼差">兼差</a> <a href="http://www.mashow.org/emma" title="台北酒店經紀">台北酒店經紀</a> <a href="http://blog.xuite.net/jkl338801/blog" title="酒店經紀">酒店經紀</a> <a href="http://www.mashow.org/emilie" title="酒店打工">酒店打工</a> <a href="http://www.mashow.org/club" title="喝酒">喝酒</a> <a href="http://www.mashow.org/ktv" title="酒店消費">酒店消費</a> <a href="http://www.mashow.org/club" title="制服酒店">制服酒店</a> <a href="http://www.mashow.org/ktv" title="酒店喝酒">酒店喝酒</a>

 2009.12.24 16:27

 

목록
1017 Linux Kernel < 2.6.37-rc2..  Level 9, 8750 Point nesk 2010.12.20 38482
1016 Linux Kernel <= 2.6.37 Lo..  Level 9, 8750 Point nesk 2010.12.10 34442
1015 Local Root Privilege Esca..  Level 9, 8750 Point nesk 2010.11.26 34830
1014 Windows Task Scheduler Pr..  Level 9, 8750 Point nesk 2010.11.21 36711
1013 Internet Explorer CSS Tag.. [1]  Level 9, 8750 Point nesk 2010.11.07 17460
1012 Adobe Shockwave player rc..  Level 9, 8750 Point nesk 2010.10.22 6988
1011 Linux RDS Protocol Local ..  Level 9, 8750 Point nesk 2010.10.20 8146
1010 ASP.NET Padding Oracle Vu..  Level 9, 8750 Point nesk 2010.10.11 8532
1009 Iphone pdf 취약성 (by Autoly.. [3]  Level 14, 20240 Point hinehong 2010.08.18 8708
1008 Norton Multiple insuffici.. [27]  Level 2, 645 Point bokdong2 2007.04.02 16181
1007 SignKorea's ActiveX Buff.. [42]  Level 2, 645 Point bokdong2 2007.03.27 18321
1006 Symantec Mail Security fo.. [4]  Level 5, 3065 Point RiceBox 2007.03.02 7872
1005 McAfee VirusScan Virex 불안.. [2]  Level 4, 1440 Point avy 2007.02.28 7664
1004 Microsoft XBox 360 권한 상승 .. [3]  Level 4, 1440 Point avy 2007.02.28 7418
1003 Windows Shell User Logon .. [5]  Level 4, 1440 Point avy 2007.02.26 7719
1002 아래한글에서 심각한 보안취약점이 발견됨에 따라.. [6]  Level 2, 645 Point bokdong2 2007.02.20 11442
1001 MIMEDefang 불특정 버퍼 오버플로우 취.. [3]  Level 4, 1440 Point avy 2007.02.12 7365
1000 Sun Solaris Telnet 원격 인증 .. [8]  Level 4, 1440 Point avy 2007.02.12 8681
999 Microsoft Help Workshop C.. [6]  Level 12, 12970 Point hkpco 2007.01.18 8115
998 Internet Explorer 7 팝업 어드.. [2]  Level 5, 3065 Point RiceBox 2006.10.27 6076
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10