| 软件名称: |
ms04-028GDIScan.rar |
| 文件类型: |
|
|
| 界面语言: |
简体中文 |
| 软件类型: |
国产软件 |
| 运行环境: |
WinNT/2K/Xp |
| 授权方式: |
共享软件 |
| 软件大小: |
9K |
| 软件等级: |
★★★★☆ |
| 发布时间: |
2004-09-29 |
| 官方网址: |
http://isc.sans.org 作者:vfocus |
| 演示网址: |
|
| 软件说明: |
|
sans.org出的MS04-028 GDIPLUS.dll JPG漏洞扫描器,默认情况下xp和win2003受该漏洞影响,但很多第3方工具都安装了有漏洞的GDIPLUS.dll等文件,因此也可能是受影响的。该工具对硬盘上的文件进行扫描,列出有问题的dll文件版本。
该扫描器有命令行和gui 二种版本,比ms出的那个扫描工具好用。
http://isc.sans.org/gdiscan.php
GDI Scan
gdiscan.exe was written for Windows 2000 and higher. It scans the drive containing the Windows %system% directory and Looks for vulnerable versions of gdiplus.dll, sxs.dll, wsxs.dll, mso.dll.
The scan starts upon execution. It will signal completion of scan in text box with "Done."
Vulnerable versions of the .dll files are listed in RED.
The path where a vulnerable .dll file is found is important. Remember that dlls are loaded in the following order (note: this is a VAST simplification):
* The directory from which the application loaded.
* The (application's) current directory.
* Windows 95/98: The Windows system directory (default: C:\Windows\system)
* Windows NT+: The 32-bit Windows system directory (default: C:\WinNT\System32)
* Windows NT+: The 16-bit Windows system directory (default: C:\WinNT\System)
* The Windows directory (default: C:\WinNT or C:\Windows)
* The directories that are listed in the PATH environment variable
download GUI version (Ver. 2.1) (updated. Version 2 will allow you to scan arbitrary drives) (MD5: 2157e5553c7e00173de3c2bbb1caef37) PGP Signature command line version (MD5: 23125875967a5b6be86eed79af9bcd74) PGP Signature (Ver. 2.1 now includes scanning on arbitrary drives)
(Thanks to Tom Liston for writing this program)
FAQ
* Ignore files in directories like Windows\$NtUniinstallKBxxxxx\ and Windows\WinSxS. These are old versions left behind for uninstal purposes.
* There are no command line options for the gui version.
* the only parameter for the command line option is the log filename (usage: gdiclscan.exe logfile). It will exit with a return code of 1 if it can not open the log file. The command line version will not overwrite the log file.
License: You may freely copy and use this binary. Please do not mirror the file, as updates may be made available at any time without notice. If you link to this tool, link to http://isc.sans.org/gdiscan.php . |
|
| 下载地址: |
进入下载地址列表
|
| 下载说明: |
☉推荐使用网际快车下载本站软件,使用 WinRAR v3.10 以上版本解压本站软件。
☉如果这个软件总是不能下载的请点击报告错误,谢谢合作!!
☉下载本站资源,如果服务器暂不能下载请过一段时间重试!
☉如果遇到什么问题,请到本站论坛去咨寻,我们将在那里提供更多 、更好的资源!
☉本站提供的一些商业软件是供学习研究之用,如用于商业用途,请购买正版。 |
|
[ 推荐]
[ 评论(0条)] [返回顶部] [打印本页]
[关闭窗口] |
|
|
| |
|
|
 |
|
推荐广告 |
|
|
|
|
|
