MS09-046: Vulnerability in the DHTML Editing Component ActiveX control could allow remote code execution

???? ?????? ???? ??????
???? ID: 956844 - ?? ???????? ?? ?????? ??? ?? ?? ???? ???? ???? ??.
??? ?? ??????? ???? | ??? ?? ??????? ????

?? ????? ??

?????

Microsoft has released security bulletin MS09-046. ??????? ??????? ????? ?? ???, ????? Microsoft ??? ?????? ??? ?? ?? ?? ????::

??? ?? ?? ??????? ?????? ?? ??? ?????? ??????? ???? ?? ??? ???? ????

????? ???????????? ?? ???, ????-????? ?????? ?????? ?? ?????? 1-866-PCSAFETY ??????? ????? ??????? ?? ????? ??? ?? ???? ??????? Microsoft subsidiary ?? ?????? ????? ??????? ?????? ?? ??? ?????? ???????? ?? ??? ???? ??????? Microsoft subsidiary ?? ?????? ???? ???? ?? ???? ??? ???? ??????? ?? ??? Microsoft ?????????????? ?????? ??? ???? ?? ????:
HTTP://support.Microsoft.com/common/international.aspx?rdpath=4
??????? ????? ???????? ????? Microsoft ??? ???? ?? ???? ?? ?????? ????-????? ?-??? ?????? ?? ??? ?? ???-??? ?????? ??? ?? ?????? ???? ?? ??? ?????? ????? ?? ??????? ?? ???? ???:
HTTP://support.Microsoft.com/oas/default.aspx?&prid=7552
?????????? ??????, ?? ??? ?????? ?? ??? ??????? ?????? ?? ???? ??????? ?????? ???????? ?? ?????? ?? ?????? ???

???? ???????

?? ??????? ?????? ?? ???? ??? ???? ???????

?? ??????? ?????? ?? ??? ????? ????????

This security update adds a new version of the DHTML Editing Control that injects the following META elements into the document containing the DHTML Editing Control for each operation that targets the document's HTML.
<META content="text/html; charset=unicode" http-eqiv=Content-Type>
<META name=GENERATOR content="MSHTML <version>">
TheSourceCodePreservation??? ???????? DHTML ?????? ???????? ??? ??? ?? ???????? ????????? ??? ???? ?? ??? ??????? ???? ?? ??? ????? ??? ?? ?????? ??????????? ?? ??? ?? ???? ??? ?????? ?????? ?? ???? ???? ?? ??????? ?? ??? ?? ?????? ?? ?? ???? ?? ??? ?? ?????? ?? ?? ???? ?? ???????????? ???? ?? ??? ?????? ????????? ?? ??? ????????? ??? ?????

?????? ????? reduction ?????? ?? ??? ?? ??? ??? ??????? ??????? ?? ????? preservation ?????? ??? ?? ??? DHTML ???????? ?? ?????? ??? ??? ??? DHTML ???????? MSHTML ?? ???? ?? ????? ??, ?? HTML ?????? ???? ??? MSHTML ?? DHTML ???????? ???? ???? ??? ??????? ?????? ????? ???????? ???? ?????? MSHTML ?? "??????" HTML ????? ???????? ?????? ????? ??? ?? ?????????? ?? ??????????? ??????? ??? ?????? ????? ??????<html>, ??<head>???, ?? ??????<style></style></head></html>
HTTP://www.w3.org/People/Raggett/tidy
?????? ?????? ???? ??? ???? ?????? ???? ?? ??? Microsoft ???? ?????-???? ?????? ??????? ?????? ????? ??.. ?? ?????? ??????? ???? ???? ????? ????? ?? ??? ???? ??.. Microsoft ?? ?????-???? ?????? ??????? ?? ??? ???? ?? ??? ?????? ???? ????..

????? ???????

?? ?????????? ?????? ?? ????????? (??????? ????? ???????) ??????? ??????? ?? ?? ????? ???? ??? ???????? ??? ?? ??????? ?? ??????? ???? ??? ?? ??????? ?? ??? ?????? ?? ???, ??????? ????????? ??? (UTC) ??? ???????? ??.. ???? ??????? ???????? ?? ?? ??????? ?? ??? ?????? ?? ??? ???? ??????? ??? ??? ?? ???? ??????? ?????? ??? ??? (DST) ???? ?? ??? ????????? ???? ???.. ???????? ??? ??, ?????? ?? ??? ??????? ?? ???? ?????? ??? ??????????? ????????? ???? ?? ????????? ?? ???? ???..

Windows 2000 ????? ???????

??? ?? ??? Microsoft Windows 2000 ?????? ??? 4 ?? editions ???????

?? ?????? ?? ??????? ?????? ?????? ?? ??????? ????
????? ???????? ?? ???????????? ?????????????:??????????
Triedit.dll6.1.0.9235149,77603-??-200921: 54x86

Windows XP ?? Windows Server 2003 ????? ???????

  • ?????? ?? ???? ??????? milestone (RTM, SP ?? ???? ????n) ?? (QFE, GDR) ???? ???? ?? "SP ??????????" ?? "???? ????" ??????? ??? ??? ???? ????
  • GDR ???? ?????? ??? ???? ?? ????????? ???? ??? ?? ??????, ?????????? ???????? ?? ??????? ???? ?? ??? ??????? ??? ?? ?????? ??? ?? ???.. QFE ???? ?????? ??? ??????? ??? ?? ?????? ??? ?? ????????? ?? ???????? ???????????? ???? ???..
  • ??????? ?? ?? ???? ??? ???????? ??, ?? ????? ?? ?????????? ?????? ?? ??????? ??? ??????? ??????? ?????? ???? (KB??????.cat) ?? Microsoft ??????? ????????? ?? ??? ??????????? ???

Windows XP ?? ??? ??????? x86-?????? ????????? ?? ???

?? ?????? ?? ??????? ?????? ?????? ?? ??????? ????
????? ???????? ?? ???????????? ?????????????:??????????SP ?????????????? ????
Triedit.dll6.1.0.9246153,08821-???-200922: 04x86SP2SP2GDR
Triedit.dll6.1.0.9246153,08821-???-200921: 55x86SP2SP2QFE
Triedit.dll6.1.0.9246153,08821-???-200921: 44x86SP3SP3GDR
Triedit.dll6.1.0.9246153,08821-???-200921: 49x86SP3SP3QFE

Windows Server 2003 ?? Windows XP Professional x64 ??????? ?? ??? ??????? x64-?????? ????????? ?? ???

?? ?????? ?? ??????? ?????? ?????? ?? ??????? ????
????? ???????? ?? ???????????? ?????????????:??????????SP ?????????????? ????
Triedit.dll6.1.0.9246232,44806-??-200917: 51x64SP2SP2GDR
Wtriedit.dll6.1.0.9246155,13606-??-200917: 51x86SP2SP2GDR\WOW
Triedit.dll6.1.0.9246232,44806-??-200917: 49x64SP2SP2QFE
Wtriedit.dll6.1.0.9246155,13606-??-200917: 49x86SP2SP2QFE\WOW

Windows Server 2003 ?? ??? ??????? x86-?????? ????????? ?? ???

?? ?????? ?? ??????? ?????? ?????? ?? ??????? ????
????? ???????? ?? ???????????? ?????????????:??????????SP ?????????????? ????
Triedit.dll6.1.0.9246155,13624-???-200906: 32x86SP2SP2GDR
Triedit.dll6.1.0.9246155,13624-???-200906: 51x86SP2SP2QFE

Windows Server 2003 ?? ??? ??????? IA-64-?????? ????????? ?? ???

?? ?????? ?? ??????? ?????? ?????? ?? ??????? ????
????? ???????? ?? ???????????? ?????????????:??????????SP ?????????????? ????
Triedit.dll6.1.0.9246432,64006-??-200917: 51IA-64SP2SP2GDR
Wtriedit.dll6.1.0.9246155,13606-??-200917: 51x86SP2SP2GDR\WOW
Triedit.dll6.1.0.9246432,64006-??-200917: 49IA-64SP2SP2QFE
Wtriedit.dll6.1.0.9246155,13606-??-200917: 49x86SP2SP2QFE\WOW

???

???? ID: 956844 - ????? ???????: 06 ?????? 2010 - ??????: 2.0
???? ???? ???? ??:
  • Microsoft Windows Server 2003 Service Pack 2, ?? ???? ??? ?????? ???? ???:
    • Microsoft Windows Server 2003, Standard Edition (32-bit x86)
    • Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
    • Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)
    • Microsoft Windows Server 2003, Web Edition
    • Microsoft Windows Server 2003, Datacenter x64 Edition
    • Microsoft Windows Server 2003, Enterprise x64 Edition
    • Microsoft Windows Server 2003, Standard x64 Edition
    • Microsoft Windows XP Professional x64 Edition
    • Microsoft Windows Server 2003, Datacenter Edition for Itanium-Based Systems
    • Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems
  • Microsoft Windows XP Service Pack 2, ?? ???? ??? ?????? ???? ???:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Professional
  • Microsoft Windows XP Service Pack 3, ?? ???? ??? ?????? ???? ???:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Professional
  • Microsoft Windows 2000 Service Pack 4, ?? ???? ??? ?????? ???? ???:
    • Microsoft Windows 2000 Advanced Server
    • Microsoft Windows 2000 Professional Edition
    • Microsoft Windows 2000 Server
??????: 
atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability kbsurveynew kbmt KB956844 KbMthi
???? ?????? ????????
??????????: ?? ???? ?? ???? ??????? ?? ????? ?? Microsoft ????-?????? ?????????? ?????? ?????? ???? ??? ??. Microsoft ???? ??? ????-???????? ?? ????-???????? ????? ?????? ?? ???? ???????? ???? ?? ???? ????? ????? ??? ?? ??? ?????? ?? ???? ???? ???? ??? ????? ??. ???????, ????-???????? ???? ????? ???? ???? ???? ???. ?????, ????????, ?????-???? ?? ??????? ?? ???????? ?? ???? ???, ???? ?? ??? ?????? ???? ???? ??? ????? ??? ?? ???? ??. Microsoft ??????? ??? ???? ?? ?????? ?? ??????????, ????????? ?? ??? ?????? ?? ???? ????? ?? ???? ???????? ?? ??? ???? ????? ?? ??? ????????? ???? ??. Microsoft ????-?????? ?????????? ?? ????? ?????? ?? ?? ??? ??.
?????????? ?? ??????? ????????? ??????? ??:956844

??????????? ???

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com