Test Kennung:	1.3.6.1.4.1.25623.1.0.800310
Kategorie:	Buffer overflow
Titel:	Microsoft Windows Media Services nskey.dll ActiveX BOF Vulnerability
Zusammenfassung:	Windows Media Services is prone to a buffer overflow vulnerability.
Beschreibung:	Summary: Windows Media Services is prone to a buffer overflow vulnerability. Vulnerability Insight: The flaw is due to an error in CallHTMLHelp method in nskey.dll file, which fails to perform adequate boundary checks on user-supplied input. Vulnerability Impact: Successful exploitation could allow execution of arbitrary code, and cause the victim's browser to crash. Affected Software/OS: Microsoft Windows Media Services on Microsoft Windows NT/2000 Server. Solution: Vendor has released a patch to fix this issue. Windows Media Services customers should contact the vendor for support for upgrade or patch. Workaround: Set a kill bit for the CLSID {2646205B-878C-11D1-B07C-0000C040BCDB} CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5232 BugTraq ID: 30814 http://www.securityfocus.com/bid/30814 http://packetstormsecurity.org/0808-exploits/wms-overflow.txt http://www.securityfocus.com/data/vulnerabilities/exploits/30814.html.txt http://securitytracker.com/id?1020733 XForce ISS Database: windowsmediaservices-callhtmlhelp-bo(44629) https://exchange.xforce.ibmcloud.com/vulnerabilities/44629
Copyright	Copyright (C) 2008 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.