Bloodhound/Exploit.131

Bloodhound/Exploit.131 identifica un método heurísitico para la vulnerabilidad reportada el 30 de Marzo del 2007, en el Microsoft Animated Cursor (ANI), de acuerdo a Security Focus (23194)

La forma empleada de propagación y ejecución de este exploit es a través del MS Internet Explorer, al visitar sitios web con archivos HTML que contienen archivos ANI.

Estos gráficos exprofesamente codificados contienen instrucciones para ocasionar desbordamientos de memoria y ejecución de códigos malignos en forma remota y afectan a Internet Explorer versiones 6 y 7.

Los archivos ANI son formatos de gráficos definidos por Microsoft paras sus iconos animados y cursores para Windows.

• http://www.securityfocus.com/brief/472
• http://www.microsoft.com/technet/security/advisory/935423.mspx

Sistemas afectados:

• Microsoft Windows XP Tablet PC Edition SP2
  Microsoft Windows XP Professional SP2
  Microsoft Windows XP Media Center Edition SP2
  Microsoft Windows XP Home SP2
  Microsoft Windows Vista December CTP 
  Microsoft Windows Vista Ultimate
  Microsoft Windows Vista Home Premium
  Microsoft Windows Vista Home Basic
  Microsoft Windows Vista Enterprise
  Microsoft Windows Vista Business
  Microsoft Windows Vista beta 2
  Microsoft Windows Vista Beta 1
  Microsoft Windows Vista Beta
  Microsoft Windows Vista 0
  Microsoft Windows Server 2003 Web Edition SP1 Beta 1
  Microsoft Windows Server 2003 Web Edition SP1
  Microsoft Windows Server 2003 Web Edition 
  Microsoft Windows Server 2003 Standard x64 Edition 
  Microsoft Windows Server 2003 Standard Edition SP1 Beta 1
  Microsoft Windows Server 2003 Standard Edition SP1
  Microsoft Windows Server 2003 Standard Edition 
  Microsoft Windows Server 2003 Enterprise x64 Edition 
  Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Beta 1
  Microsoft Windows Server 2003 Enterprise Edition Itanium SP1
  Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  Microsoft Windows Server 2003 Enterprise Edition SP1 Beta 1
  Microsoft Windows Server 2003 Enterprise Edition SP1
  Microsoft Windows Server 2003 Enterprise Edition 
  Microsoft Windows Server 2003 Datacenter x64 Edition 
  Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1
  Microsoft Windows Server 2003 Datacenter Edition Itanium SP1
  Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  Microsoft Windows Server 2003 Datacenter Edition SP1 Beta 1
  Microsoft Windows Server 2003 Datacenter Edition SP1
  Microsoft Windows Server 2003 Datacenter Edition 
  Microsoft Windows Mail 0
  Microsoft Windows 2000 Server Japanese Edition 
  Microsoft Windows 2000 Server SP4
  Microsoft Windows 2000 Server SP3
  Microsoft Windows 2000 Server SP2
  Microsoft Windows 2000 Server SP1
  Microsoft Windows 2000 Server 
  Microsoft Windows 2000 Professional SP4
  Microsoft Windows 2000 Professional SP3
  Microsoft Windows 2000 Professional SP2
  Microsoft Windows 2000 Professional SP1
  Microsoft Windows 2000 Professional 
  Microsoft Windows 2000 Datacenter Server SP4
  Microsoft Windows 2000 Datacenter Server SP3
  Microsoft Windows 2000 Datacenter Server SP2
  Microsoft Windows 2000 Datacenter Server SP1
  Microsoft Windows 2000 Datacenter Server 
  Microsoft Windows 2000 Advanced Server SP4
  Microsoft Windows 2000 Advanced Server SP3
  Microsoft Windows 2000 Advanced Server SP2
  Microsoft Windows 2000 Advanced Server SP1
  Microsoft Windows 2000 Advanced Server 
  Microsoft Outlook Express 6.0 SP2
  Microsoft Outlook Express 6.0 SP1
  + Microsoft Windows XP 64-bit Edition SP1
  + Microsoft Windows XP Home SP1
  + Microsoft Windows XP Professional SP1
  Microsoft Outlook Express 6.0 
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Web Edition 
  + Microsoft Windows XP Home 
  + Microsoft Windows XP Media Center Edition 
  + Microsoft Windows XP Professional 
  + Microsoft Windows XP Tablet PC Edition 
  Microsoft Internet Explorer 6.0 SP2
  Microsoft Internet Explorer 6.0 SP1
  Microsoft Internet Explorer 6.0 
  - Citrix ICA Client for Windows 4.0 SP6a
  - Microsoft Windows 2000 Advanced Server SP2
  - Microsoft Windows 2000 Advanced Server SP2
  - Microsoft Windows 2000 Advanced Server SP1
  - Microsoft Windows 2000 Advanced Server SP1
  - Microsoft Windows 2000 Advanced Server 
  - Microsoft Windows 2000 Advanced Server 
  - Microsoft Windows 2000 Datacenter Server SP2
  - Microsoft Windows 2000 Datacenter Server SP2
  - Microsoft Windows 2000 Datacenter Server SP1
  - Microsoft Windows 2000 Datacenter Server SP1
  - Microsoft Windows 2000 Datacenter Server 
  - Microsoft Windows 2000 Datacenter Server 
  - Microsoft Windows 2000 Professional SP2
  - Microsoft Windows 2000 Professional SP2
  - Microsoft Windows 2000 Professional SP1
  - Microsoft Windows 2000 Professional SP1
  - Microsoft Windows 2000 Professional 
  - Microsoft Windows 2000 Professional 
  - Microsoft Windows 2000 Server SP2
  - Microsoft Windows 2000 Server SP2
  - Microsoft Windows 2000 Server SP1
  - Microsoft Windows 2000 Server SP1
  - Microsoft Windows 2000 Server 
  - Microsoft Windows 2000 Server 
  - Microsoft Windows 2000 Terminal Services SP2
  - Microsoft Windows 2000 Terminal Services SP2
  - Microsoft Windows 2000 Terminal Services SP1
  - Microsoft Windows 2000 Terminal Services SP1
  - Microsoft Windows 2000 Terminal Services 
  - Microsoft Windows 2000 Terminal Services 
  - Microsoft Windows 98 
  - Microsoft Windows 98 
  - Microsoft Windows 98SE 
  - Microsoft Windows 98SE 
  - Microsoft Windows ME 
  - Microsoft Windows ME 
  - Microsoft Windows NT 4.0 SP6a
  - Microsoft Windows NT Enterprise Server 4.0 SP6a
  - Microsoft Windows NT Enterprise Server 4.0 SP6a
  - Microsoft Windows NT Server 4.0 SP6a
  - Microsoft Windows NT Server 4.0 SP6a
  - Microsoft Windows NT Workstation 4.0 SP6a
  - Microsoft Windows NT Workstation 4.0 SP6a
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition 
  + Microsoft Windows Server 2003 Datacenter Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition 
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Enterprise Edition Itanium 0
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Standard Edition 
  + Microsoft Windows Server 2003 Web Edition 
  + Microsoft Windows Server 2003 Web Edition 
  + Microsoft Windows XP Home 
  + Microsoft Windows XP Home 
  + Microsoft Windows XP Professional 
  + Microsoft Windows XP Professional 
  Microsoft Internet Explorer 7.0
  + Microsoft Windows Vista Ultimate
  + Microsoft Windows Vista Home Premium
  + Microsoft Windows Vista Home Basic
  + Microsoft Windows Vista Enterprise
  + Microsoft Windows Vista Business
  + Microsoft Windows Vista 0
  + Microsoft Windows Vista 0