MDT2DD.DLL COM$B%*%V%8%'%/%H=i4|2=$5(B$B$l$J$$%R!<%W%a%b%j@H<e(B$B@-(B

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

MDT2DD.DLL COM$B%*%V%8%'%/%H=i4|2=$5(B$B$l$J$$%R!<%W%a%b%j@H

To: bugtraq-jp@xxxxxxxxxxxxxxxxx
Subject: MDT2DD.DLL COM$B%*%V%8%'%/%H=i4|2=$5(B$B$l$J$$%R!<%W%a%b%j@H
From: Akiko Takahashi <takahashi.akiko@xxxxxxxxx>
Date: Wed, 12 Oct 2005 14:19:17 +0900

MDT2DD.DLL COM$B%*%V%8%'%/%H=i4|2=$5$l$J$$%R!<%W%a%b%j@Hhttp://www.eeye.com/html/research/advisories/AD20051011d.html
(B
$B%j%j!<%9F|(B:
(BOctober 11, 2005
(B
$BJs9pF|(B: 
(BSeptember 15, 2005
(B
$B%Q%C%A3+H/4|4V(B: 26$BF|(B
(B
$B%j%9%/%l%Y%k(B: 
$B9b(B ($B%j%b!<%H%3!<%I]%7%9%F%`(B:
(BInternet Explorer 5 SP4
(BInternet Explorer 5.5 SP2 - Windows ME
(BInternet Explorer 6 SP1 - $BA4(BWindows OS 
(BInternet Explorer 6 - Windows Server 2003 / Windows Server 2003 SP1
(BInternet Explorer 6 - Windows XP SP2
(B
(BeEye ID#:  EEYEB20050915
(BOSVDB ID#: 2692
(BCVE #:  CAN-2005-2127
(B
$B35MW(B:
(BeEye Digital Security$B$O!"(BMicrosoft Design Tools COM$B%*%V%8%'%/%H$N%R!<%W(B
$B%a%b%j3d$jEv$F$HMxMQ$K@HH$9$k(B
$B%f!<%6$N%7%9%F%`>e$GG$0U$N%3!<%I$r\:Y>pJs(B:
(BMicrosoft Design Tools Polyine Control 2 COM$B%*%V%8%'%/%H(B(MDT2DD.DLL$B$K$F(B
$BDs6!(B)$B$O!"(BMDT2FW.DLL$B$K$h$C$F%(%-%9%]!<%H$5$l$k(BCCUMemMgr::Alloc$B4X?t$K$F!"(B
$BF1$8$/(BMDT2FW.DLL$B$K$h$C$F%(%-%9%]!<%H$5$l$k(BCCUMemMgr$B$N%0%m!<%P%k%/%i%9%$(B
$B%s%9%?%s%9!"(Bg_cumgr$B$K%a%b%j$r3d$jEv$F$^$9!#(BCCUMemMgr::Alloc$B$O(BHeapAlloc$B4X(B
$B?t$K$F%R!<%W%a%b%j$r3d$jEv$F!"%/%i%9%$%s%9%?%s%9Fb$N%U%i%0$,%;%C%H$5$l$F(B
$B$$$l$P(B0$B$K=i4|2=$7$^$9!#$?$@$7!"(Bg_cumgr$BFb$N%U%i%0$O%;%C%H$5$l$F$$$J$$0Y!"(B
$B3d$jEv$F$i$l$?%R!<%W%V%m%C%/$O(B0$B$K=i4|2=$5$l$:!"2a5n$NFbMF$rJ];}$7$?$^$^(B
$B$K$J$j$^$9!#(B
(B
$B$3$N>uBV$K$h$j!"(BMDT2DD.DLL$B$NA0Ds>r7o$,?/32$5$l(Bexploit$B2DG=$H$J$j$^$9!#(B
(B"ATL::CComCreator<class ATL::CComPolyObject<class
(BCPolyCtrl>>::CreateInstance"$B4X?t$O!"?7$7$$%/%i%9%$%s%9%?%s%9$K%a%b%j$r3d(B
$B$jEv$F$k0Y!"(Bg_cumgr.Alloc(0xA4)$B$r8F$S=P$7$^$9$,!"$=$l$KB3$/=i4|2=$K<:GT(B
$B$9$k$H!"(BCPolyCtrl::~CPolyCtrl$B$,H$5$;!"G$0U$N%"(B
$B%I%l%9$K@)8f$r0\$9$3$H$,2DG=$H$J$j$^$9!#(B
(B
$BBP1~%=%U%H%&%'%">pJs(B:
(BRetina - Network Security Scanner
(BBlink - End-point Vulnerability Prevention
(B
$B%Y%s%@BP1~>u67(B:
(BMicrosoft$Bhttp://www.microsoft.com/japan/security/bulletins/MS05-047e.mspx
(B
$B%/%l%8%C%H(B:
$BH/8+=;R(B ($B=;>&>pJs%7%9%F%`3t<02qpJs(B:
(BRetina Network Security Scanner - $BF|K\8lHGI>2AHG(B
(B - https://sec.sse.co.jp/eeye/freedl.html
(BRetina Network Security Scanner - $B1Q8lHGI>2AHG(B
(B - http://www.eeye.com/html/products/retina/download/index.html
(BBlink Endpoint Vulnerability Prevention - $B1Q8lHGI>2AHG(B
(B - http://www.eeye.com/html/products/blink/download/index.html
(B
(B
$BK\(BAdvisory$B$O!"=;>&>pJs%7%9%F%`3t<02qe$GK]Lu$7$F$*$j$^$9!#(B
(BSCS$B$OK\OBLu$,@53N$J>pJs$K$J$k$h$&EX$a$5$;$FD:$-$^$9!#$7$+$7$J$,$i!"@53N(B
$B@-!"40A4@-!"?.Mj@-!"0BA4@-Ey$K4X$7$F!"$$$+$J$k@UG$$bIi$o$J$$$3$H$HCW$7$^(B
$B$9!#(B
(B
(B
(BCopyright (c) 1998-2005 eEye Digital Security
(BPermission is hereby granted for the redistribution of this alert
(Belectronically. It is not to be edited in any way without express
(Bconsent of eEye.  If you wish to reprint the whole or any part of this
(Balert in any other medium excluding electronic medium, please email
(Balert@xxxxxxxx for permission.
(B
(BDisclaimer
(BThe information within this paper may change without notice. Use of this
(Binformation constitutes acceptance for use in an AS IS condition.  There
(Bare no warranties, implied or express, with regard to this information.
(BIn no event shall the author be liable for any direct or indirect
(Bdamages whatsoever arising out of or in connection with the use or
(Bspread of this information.  Any use of this information is at the
(Buser's own risk.
(B
(B
(B----------------------------------------
(B  $B9b66(B $B>=;R(B <takahashi.akiko@xxxxxxxxx>
(B  $B=;>&>pJs%7%9%F%`3t<02qhttp://www.scs.co.jp

Prev by Date: Windows UMPNPMGR wsprintfW$B%9%?%C%/%P%C%U(B$B%!%*!<%P!<%U%m!<@H

Next by Date: Microsoft Distributed Transaction Coordinator$B%a%b%jJQ99@H(B$B

Previous by thread: Windows UMPNPMGR wsprintfW$B%9%?%C%/%P%C%U(B$B%!%*!<%P!<%U%m!<@H

Next by thread: Microsoft Distributed Transaction Coordinator$B%a%b%jJQ99@H(B$B

Index(es):
- Date
- Thread