Bloodhound/Exploit.129

Bloodhound/Exploit.129 identifica un método heurísitico para la vulnerabilidad reportada el 28 de Marzo del 2007, en el Microsoft Data Access Components, de acuerdo a Security Focus (20704)

La forma empleada de propagación y ejecución de este exploit es a través del MS Internet Explorer, al visitar sitios web con archivos HTML que contienen maliciosos JavaScripts o VBScripts.

Estos scripts exprofesamente codificados contienen instrucciones para ocasionar desbordamientos de memoria y ejecución de códigos malignos en forma remota y afectan a Windows 2000/XP y Server 2003.

Los Componentes que integram el Acceso de Datos de Microsoft (MDAC) necesarios para activar el Acceso Universal de Datos, son por ejemplo:

• Microsoft ActiveX Data Objects (ADO)
• Open Database Connectivity (ODBC)
• OLE DB

Sistemas afectados:

• Microsoft MDAC 2.8 
  + Microsoft Windows 2000 Advanced Server SP4
  + Microsoft Windows 2000 Advanced Server SP3
  + Microsoft Windows 2000 Advanced Server SP2
  + Microsoft Windows 2000 Advanced Server SP1
  + Microsoft Windows 2000 Advanced Server 
  + Microsoft Windows 2000 Datacenter Server SP4
  + Microsoft Windows 2000 Datacenter Server SP3
  + Microsoft Windows 2000 Datacenter Server SP2
  + Microsoft Windows 2000 Datacenter Server SP1
  + Microsoft Windows 2000 Datacenter Server 
  + Microsoft Windows 2000 Professional SP4
  + Microsoft Windows 2000 Professional SP3
  + Microsoft Windows 2000 Professional SP2
  + Microsoft Windows 2000 Professional SP1
  + Microsoft Windows 2000 Professional 
  + Microsoft Windows 2000 Server SP4
  + Microsoft Windows 2000 Server SP3
  + Microsoft Windows 2000 Server SP2
  + Microsoft Windows 2000 Server SP1
  + Microsoft Windows 2000 Server 
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Web Edition
• Microsoft MDAC 2.8.0 SP1
  + Microsoft Windows 2000 Advanced Server SP4
  + Microsoft Windows 2000 Advanced Server SP3
  + Microsoft Windows 2000 Advanced Server SP2
  + Microsoft Windows 2000 Advanced Server SP1
  + Microsoft Windows 2000 Advanced Server 
  + Microsoft Windows 2000 Datacenter Server SP4
  + Microsoft Windows 2000 Datacenter Server SP3
  + Microsoft Windows 2000 Datacenter Server SP2
  + Microsoft Windows 2000 Datacenter Server SP1
  + Microsoft Windows 2000 Datacenter Server 
  + Microsoft Windows 2000 Professional SP4
  + Microsoft Windows 2000 Professional SP3
  + Microsoft Windows 2000 Professional SP2
  + Microsoft Windows 2000 Professional SP1
  + Microsoft Windows 2000 Professional 
  + Microsoft Windows 2000 Server SP4
  + Microsoft Windows 2000 Server SP3
  + Microsoft Windows 2000 Server SP2
  + Microsoft Windows 2000 Server SP1
  + Microsoft Windows 2000 Server 
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Web Edition
• Microsoft Internet Explorer 6.0 SP1
• Microsoft Internet Explorer 6.0 - 
  - Microsoft Windows 2000 Advanced Server SP2
  - Microsoft Windows 2000 Advanced Server SP2
  - Microsoft Windows 2000 Advanced Server SP1
  - Microsoft Windows 2000 Advanced Server SP1
  - Microsoft Windows 2000 Advanced Server 
  - Microsoft Windows 2000 Advanced Server 
  - Microsoft Windows 2000 Datacenter Server SP2
  - Microsoft Windows 2000 Datacenter Server SP2
  - Microsoft Windows 2000 Datacenter Server SP1
  - Microsoft Windows 2000 Datacenter Server SP1
  - Microsoft Windows 2000 Datacenter Server 
  - Microsoft Windows 2000 Datacenter Server 
  - Microsoft Windows 2000 Professional SP2
  - Microsoft Windows 2000 Professional SP2
  - Microsoft Windows 2000 Professional SP1
  - Microsoft Windows 2000 Professional SP1
  - Microsoft Windows 2000 Professional 
  - Microsoft Windows 2000 Professional 
  - Microsoft Windows 2000 Server SP2
  - Microsoft Windows 2000 Server SP2
  - Microsoft Windows 2000 Server SP1
  - Microsoft Windows 2000 Server SP1
  - Microsoft Windows 2000 Server 
  - Microsoft Windows 2000 Server 
  - Microsoft Windows 2000 Terminal Services SP2
  - Microsoft Windows 2000 Terminal Services SP2
  - Microsoft Windows 2000 Terminal Services SP1
  - Microsoft Windows 2000 Terminal Services SP1
  - Microsoft Windows 2000 Terminal Services 
  - Microsoft Windows 2000 Terminal Services 
  - Microsoft Windows 98 
  - Microsoft Windows 98 
  - Microsoft Windows 98SE 
  - Microsoft Windows 98SE 
  - Microsoft Windows ME 
  - Microsoft Windows ME 
  - Microsoft Windows NT 4.0 SP6a
  - Microsoft Windows NT Enterprise Server 4.0 SP6a
  - Microsoft Windows NT Enterprise Server 4.0 SP6a
  - Microsoft Windows NT Server 4.0 SP6a
  - Microsoft Windows NT Server 4.0 SP6a
  - Microsoft Windows NT Workstation 4.0 SP6a
  - Microsoft Windows NT Workstation 4.0 SP6a
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Web Edition 
  + Microsoft Windows Server 2003 Web Edition 
  + Microsoft Windows XP Home 
  + Microsoft Windows XP Home 
  + Microsoft Windows XP Professional 
  + Microsoft Windows XP Professional
• Microsoft Data Access Components 2.8 SP1
• Microsoft Data Access Components 2.8
• Microsoft Data Access Components 2.5 SP3
  

Sistemas no afectados:

• Microsoft MDAC 2.8.0 SP2
  + Microsoft Windows 2000 Advanced Server SP4
  + Microsoft Windows 2000 Advanced Server SP3
  + Microsoft Windows 2000 Advanced Server SP2
  + Microsoft Windows 2000 Advanced Server SP1
  + Microsoft Windows 2000 Advanced Server 
  + Microsoft Windows 2000 Datacenter Server SP4
  + Microsoft Windows 2000 Datacenter Server SP3
  + Microsoft Windows 2000 Datacenter Server SP2
  + Microsoft Windows 2000 Datacenter Server SP1
  + Microsoft Windows 2000 Datacenter Server 
  + Microsoft Windows 2000 Professional SP4
  + Microsoft Windows 2000 Professional SP3
  + Microsoft Windows 2000 Professional SP2
  + Microsoft Windows 2000 Professional SP1
  + Microsoft Windows 2000 Professional 
  + Microsoft Windows 2000 Server SP4
  + Microsoft Windows 2000 Server SP3
  + Microsoft Windows 2000 Server SP2
  + Microsoft Windows 2000 Server SP1
  + Microsoft Windows 2000 Server 
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Web Edition