{"id":681,"date":"2012-01-12T10:11:08","date_gmt":"2012-01-12T02:11:08","guid":{"rendered":"http:\/\/down.cdhaha.net\/?p=681"},"modified":"2012-01-12T10:16:15","modified_gmt":"2012-01-12T02:16:15","slug":"ms12-007-vulnerability-in-antixss-library-could-allow-information-disclosure-2607664","status":"publish","type":"post","link":"http:\/\/down.cdhaha.net\/?p=681","title":{"rendered":"MS12-007 Vulnerability in AntiXSS Library Could Allow Information Disclosure (2607664)"},"content":{"rendered":"<p><img decoding=\"async\" src=\"wp-content\/uploads\/2009\/09\/script.gif\" alt=\"JScript\" title=\"JScript\" class=\"alignleft\" \/>\u6b64\u5b89\u5168\u66f4\u65b0\u53ef\u89e3\u51b3 Microsoft \u9632\u8de8\u7ad9\u70b9\u811a\u672c (AntiXSS) \u5e93\u4e2d\u4e00\u4e2a\u79d8\u5bc6\u62a5\u544a\u7684\u6f0f\u6d1e\u3002\u5982\u679c\u653b\u51fb\u8005\u5229\u7528 AntiXSS \u5e93 \u7684\u6e05\u7406\u529f\u80fd\u5411\u67d0\u4e00\u7f51\u7ad9\u4f20\u9012\u6076\u610f\u811a\u672c\uff0c\u8be5\u6f0f\u6d1e\u53ef\u80fd\u5141\u8bb8\u4fe1\u606f\u6cc4\u9732\u3002\u62ab\u9732\u8be5\u4fe1\u606f\u7684\u540e\u679c\u53d6\u51b3\u4e8e\u4fe1\u606f\u672c\u8eab\u7684\u6027\u8d28\u3002\u8bf7\u6ce8\u610f\uff0c\u653b\u51fb\u8005\u65e0\u6cd5\u5229\u7528\u6b64\u6f0f\u6d1e\u6765\u6267\u884c\u4ee3\u7801\u6216\u76f4\u63a5\u63d0\u5347\u4ed6\u4eec\u7684\u7528\u6237\u6743\u9650\uff0c\u4f46\u53ef\u7528\u4e8e\u751f\u6210\u5c06\u8bd5\u56fe\u8fdb\u4e00\u6b65\u5371\u53ca\u53d7\u5f71\u54cd\u7cfb\u7edf\u5b89\u5168\u7684\u4fe1\u606f\u3002\u53ea\u6709\u4f7f\u7528 AntiXSS \u5e93\u7684\u6e05\u7406\u6a21\u5757\u7684\u7ad9\u70b9\u624d\u4f1a\u53d7\u6b64\u6f0f\u6d1e\u5f71\u54cd\u3002<\/p>\n<p>\u5bf9\u4e8e AntiXSS \u5e93 V3.x \u548c AntiXSS \u5e93 V4.0\uff0c\u6b64\u5b89\u5168\u66f4\u65b0\u7684\u7b49\u7ea7\u4e3a\u201c\u91cd\u8981\u201d\u3002\u6b64\u66f4\u65b0\u901a\u8fc7\u5c06 AntiXSS \u5e93\u5347\u7ea7\u5230\u4e0d\u53d7\u6f0f\u6d1e\u5f71\u54cd\u7684\u7248\u672c\u6765\u89e3\u51b3\u6b64\u6f0f\u6d1e\u3002<br \/>\n<!--more--><br \/>\n\u5efa\u8bae\u3002 Microsoft \u5efa\u8bae\u5ba2\u6237\u5c3d\u65e9\u5e94\u7528\u6b64\u66f4\u65b0\u3002<\/p>\n<p>\u5df2\u77e5\u95ee\u9898\u3002 \u65e0<\/p>\n<p><strong>English Version<\/strong><br \/>\n<a href=\"http:\/\/technet.microsoft.com\/en-us\/security\/bulletin\/ms12-007\" target=\"_blank\">http:\/\/technet.microsoft.com\/en-us\/security\/bulletin\/ms12-007<\/a><\/p>\n<p><strong>\u7b80\u4f53\u4e2d\u6587\u7248<\/strong><br \/>\n<a href=\"http:\/\/technet.microsoft.com\/zh-cn\/security\/bulletin\/MS12-007\" target=\"_blank\">http:\/\/technet.microsoft.com\/zh-cn\/security\/bulletin\/MS12-007<\/a><\/p>\n<p>&nbsp;<\/p>\n<!-- AddThis Advanced Settings generic via filter on the_content --><!-- AddThis Share Buttons generic via filter on the_content -->","protected":false},"excerpt":{"rendered":"<p>\u6b64\u5b89\u5168\u66f4\u65b0\u53ef\u89e3\u51b3 Microsoft \u9632\u8de8\u7ad9\u70b9\u811a\u672c (AntiXSS) \u5e93\u4e2d\u4e00\u4e2a\u79d8\u5bc6\u62a5\u544a\u7684\u6f0f\u6d1e\u3002\u5982\u679c\u653b\u51fb\u8005\u5229\u7528 AntiXSS \u5e93 \u7684\u6e05\u7406\u529f\u80fd\u5411\u67d0\u4e00\u7f51\u7ad9\u4f20\u9012\u6076\u610f\u811a\u672c\uff0c\u8be5\u6f0f\u6d1e\u53ef\u80fd\u5141\u8bb8\u4fe1\u606f\u6cc4\u9732\u3002\u62ab\u9732\u8be5\u4fe1\u606f\u7684\u540e\u679c\u53d6\u51b3\u4e8e\u4fe1\u606f\u672c\u8eab\u7684\u6027\u8d28\u3002\u8bf7\u6ce8\u610f\uff0c\u653b\u51fb\u8005\u65e0\u6cd5\u5229\u7528\u6b64\u6f0f\u6d1e\u6765\u6267\u884c\u4ee3\u7801\u6216\u76f4\u63a5\u63d0\u5347\u4ed6\u4eec\u7684\u7528\u6237\u6743\u9650\uff0c\u4f46\u53ef\u7528\u4e8e\u751f\u6210\u5c06\u8bd5\u56fe\u8fdb\u4e00\u6b65\u5371\u53ca\u53d7\u5f71\u54cd\u7cfb\u7edf\u5b89\u5168\u7684\u4fe1\u606f\u3002\u53ea\u6709\u4f7f\u7528 AntiXSS \u5e93\u7684\u6e05\u7406\u6a21\u5757\u7684\u7ad9\u70b9\u624d\u4f1a\u53d7\u6b64\u6f0f\u6d1e\u5f71\u54cd\u3002 \u5bf9\u4e8e AntiXSS \u5e93 V3.x \u548c AntiXSS \u5e93 V4.0\uff0c\u6b64\u5b89\u5168\u66f4\u65b0\u7684\u7b49\u7ea7\u4e3a\u201c\u91cd\u8981\u201d\u3002\u6b64\u66f4\u65b0\u901a\u8fc7\u5c06 AntiXSS \u5e93\u5347\u7ea7\u5230\u4e0d\u53d7\u6f0f\u6d1e\u5f71\u54cd\u7684\u7248\u672c\u6765\u89e3\u51b3\u6b64\u6f0f\u6d1e\u3002<!-- AddThis Advanced Settings generic via filter on get_the_excerpt --><!-- AddThis Share Buttons generic via filter on get_the_excerpt --><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[895],"tags":[898,721],"_links":{"self":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/posts\/681"}],"collection":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=681"}],"version-history":[{"count":0,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=\/wp\/v2\/posts\/681\/revisions"}],"wp:attachment":[{"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=681"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=681"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/down.cdhaha.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=681"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}