��к�

Select the product you need help with

MS02-026: �ѿ��Ǩ�ͺ㹡�кǹ��âͧ��黯Ժѵԧҹ ASP.NET (��ѧ��)

��Ţ�� (Article ID): 322289 - ��Ե�ѳ��Ǣ�ͧ㹺��

��ԡ��ʹ٢�ͨӡѴ��Ѻ�Դ�ͺ�ͧ KB ��¤��

��ԡ��ʴ��¤��е鹩�Ѻ��ѧ��§��ҧ�ѹ

��·�� | �غ��

�ѿ�� overrun ��ͧ�� Microsoft ASP.NET ��ö��ª�ͧ��稷��Ҩ��Դ��;��पѹ��ѧ��¡�麹��к�� ͡�ҡ�� ֧�� Microsoft ��ö�ʴ��繶֧�� ö��ª�ͧ��ҡ��ͧ��ʷ��¡�麹�� ö��¡��㹺�Ժ��ѡ�Ҥ��ʹ��¢ͧ��кǹ��âͧ��黯Ժѵԧҹ ASP.NET (Aspnet_wp.exe), ��ͤ�ҷ� unprivileged �¤��

��ͧ��ռŵ��ء��੾�� ASP.NET ��ҧ � �� StateServer ��ͨѴ��â��ʶҹ��ʪѹ �� StateServer �� ռ��ش�� ͧ��Ѻ��੾�л��ء��ҹ�鹷�� StateServer ��з��ѧ��ء�� ͧ��ռšѺ��ء�� StateServer ��դء��

��Ѻ仴�ҹ�� | ��ʹ��

��˵�

��ͧ��Դ��ͧ�ҡ�ѧ��ѹ��żŢ��Ťء��㹺�ԡ�� ASPState ��ö��Ǩ�ͺ��Ǣͧ�ء��ҹ��ҧ�١��ͧ

��Ѻ仴�ҹ�� | ��ʹ��

��

��͡�˹��ͧ��

��û�Ѻ��ا��ͧ�� Microsoft .NET Framework Service Pack 1��Ѻ��ǡѺ�Ըա�â��Ѻ service pack ��ش��Ѻ.NET Framework ��ԡ��Ţ��仹��ʹٺ��㹰ҹ��ͧ Microsoft:

318836

(http://support.microsoft.com/kb/318836/ )

�Ըա�â��Ѻ service pack ��ش�ͧ.NET Framework

��š�ô�ǹ��Ŵ

��ͤ��дǡ�ͧ�س ��Ѻ��ا��ѧ��ҹ��¡�� ͵�ͧ��ô�ǹ��Ŵ��û�Ѻ��ا��Ѻ�ѭ�ҹ�� 价��䫵��仹��ͧ Microsoft:

http://www.microsoft.com/downloads/details.aspx?FamilyID=633dffd9-c083-4ff5-8d7d-1474cac0239b&DisplayLang=en

(http://www.microsoft.com/downloads/details.aspx?FamilyID=633dffd9-c083-4ff5-8d7d-1474cac0239b&DisplayLang=en)

�ѹ�ҧ��˹��: ��͹ 6 �Զع�¹ 2002

��Ѻ��ǡѺ�Ըա�ô�ǹ��Ŵ��ʹѺʹع�ͧ Microsoft �ô��ԡ��Ţ��仹��ʹٺ�� Microsoft Knowledge Base::

119591

(http://support.microsoft.com/kb/119591/ )

�Ը��Ѻ��ʹѺʹع�ͧ��ëͿ��ҡ��ԡ��͹�Ź�

Microsoft �᡹�� Microsoft ��Ϳ��Ǩ�ͺ��ش � �ѹ��ա�û�С�� ѧ��Ǩж١��ѡ�Ҥ��ʹ�� 觪��»�ͧ�ѹ��¹�ŧ��Ѻ͹حҵ

��͡��õԴ��

��觺�÷Ѵ��觵��仹��Դ��駡�û�Ѻ��ا ��ա�âѴ�ѧ��¼�� ѧ�Ѻ��:

ndp10_qfem_q322289_en.exe /Q

��͹�ٻѭ�ҡ�õԴ��駴�ҹ��ҧ ��ô�ѧࡵ�� ͧ��ͧ�س��ͨ��Ҥس��

�ѭ�ҡ�õԴ��

��Ѻ��ǡѺ�ѭ�ҡ�õԴ��駡Ѻ��ŷչ��ѡ�Ҥ��ʹ��¹�� ԡ��Ţ��仹��ʹٺ��㹰ҹ��ͧ Microsoft:

324292

(http://support.microsoft.com/kb/324292/ )

�ѭ�ҡ�õԴ��駡Ѻ silent �ͧ��ʹ��º��ŷչ�� MS02-026 ��Դ��

��

��仹��ж١�Ѵ�͡��ѧ�� %WINDIR%\Microsoft.NET\Framework\v1.0.3705\:

   Version       File Name
   -------------------------------
   1.0.3705.272  Aspnet_isapi.dll
   1.0.3705.272  Aspnet_wp.exe
   1.0.3705.272  Aspnet_regiis.exe
       --        Aspnet_perf.ini
       --        Aspnet_perf2.ini
   1.0.3705.272  System.Web.dll

��仹��ж١�Ѵ�͡��ѧ�� %WINDIR%\Microsoft.NET\Framework\v1.0.3705\ASP.NETClientFiles\:

   Version  File Name
   -----------------------
   --       SmartNavIE5.js
   --       SmartNav.js

��Ѻ仴�ҹ�� | ��ʹ��

ʶҹ�

Microsoft ��׹�ѹ�� ѭ�ҹ��Ҩ��дѺ�ͧ��ͧ��ѡ�Ҥ��ʹ�� ASP.NET �ͧ Microsoft�ѭ�ҹ��͹��١�� Microsoft .NET Framework Service Pack 2 (SP2)

��Ѻ仴�ҹ�� | ��ʹ��

��

��Ѻ��ǡѺ��ͧ�� 价��䫵��仹��ͧ Microsoft:

http://www.microsoft.com/technet/security/bulletin/MS02-026.mspx

(http://www.microsoft.com/technet/security/bulletin/MS02-026.mspx)

ᾷ��Ѻ��ͧ�� (MS02 026) ��Ţ Microsoft Knowledge Base (KB) ��ᵡ��ҧ�ѹ ��Ţ KB ��ʹ��ͧ�ѹ��Ѻ��Ѻ��ا��Ż�ҡ��㹵��ҧ��仹��

�غ��ҧ��µ��ҧ��

�ӹǹ��亵�	��
322294 (http://support.microsoft.com/default.aspx?scid=kb;fr;322294)	��
322295 (http://support.microsoft.com/default.aspx?scid=kb;it;322295)	�Ե��
322296 (http://support.microsoft.com/default.aspx?scid=kb;es;322296)	�໹
322299 (http://support.microsoft.com/kb/322299/ )	�չ��ء��
322300 (http://support.microsoft.com/kb/322300/ )	�չ(��)
322301 (http://support.microsoft.com/kb/322301/ )	��

��Ѻ仴�ҹ�� | ��ʹ��

�س��ѵ�

��Ţ�� (Article ID): 322289 - ��Ǥ��ش��: 13 ��Ҥ� 2554 - Revision: 3.0

��Ѻ

Microsoft ASP.NET 1.0
Microsoft .NET Framework 1.0

kbbug kbfix kbnetframe100presp2fix kbnetframe100sp2fix kbsecbulletin kbsechack kbsecurity kbsecvulnerability kbmt KB322289 KbMtth

��¤��

��Ӥѭ: ��«Ϳ��Ŵ��¤��ͧ Microsoft ᷹��繹ѡ�ŷ��繺ؤ�� Microsoft �պ��¹ѡ��к��Ŵ��¤�� س��ö��Ҷ֧��㹰ҹ��ͧ�� Ңͧ�س�ͧ ��ҧ�á�� Ŵ��¤��Ҩ�բ�ͺ��ͧ ��Ҩ�բ�ͼԴ��Ҵ㹤��Ѿ�� ٻẺ��ҡó� ��ǡѺ�óշ��ǵ�ҧ�ҵԾٴ�Դ��;ٴ��Ңͧ�س Microsoft ��ǹ�Ѻ�Դ�ͺ��ͤ��Ҵ��͹ ��Դ��Ҵ��ͤ��·��Դ�ҡ��ҼԴ��Ҵ ��͡��麷�Ţͧ�١�� Microsoft �ա�û�Ѻ��ا�Ϳ��Ŵ��¤��繻�Ш�

��仹��繩�Ѻ��ѧ��ɢͧ��:322289

(http://support.microsoft.com/kb/322289/en-us/ )

��Ѻ仴�ҹ�� | ��ʹ��