ID de Prueba:	1.3.6.1.4.1.25623.1.0.800310
Categoría:	Buffer overflow
Título:	Microsoft Windows Media Services nskey.dll ActiveX BOF Vulnerability
Resumen:	Windows Media Services is prone to a buffer overflow vulnerability.
Descripción:	Summary: Windows Media Services is prone to a buffer overflow vulnerability. Vulnerability Insight: The flaw is due to an error in CallHTMLHelp method in nskey.dll file, which fails to perform adequate boundary checks on user-supplied input. Vulnerability Impact: Successful exploitation could allow execution of arbitrary code, and cause the victim's browser to crash. Affected Software/OS: Microsoft Windows Media Services on Microsoft Windows NT/2000 Server. Solution: Vendor has released a patch to fix this issue. Windows Media Services customers should contact the vendor for support for upgrade or patch. Workaround: Set a kill bit for the CLSID {2646205B-878C-11D1-B07C-0000C040BCDB} CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5232 BugTraq ID: 30814 http://www.securityfocus.com/bid/30814 http://packetstormsecurity.org/0808-exploits/wms-overflow.txt http://www.securityfocus.com/data/vulnerabilities/exploits/30814.html.txt http://securitytracker.com/id?1020733 XForce ISS Database: windowsmediaservices-callhtmlhelp-bo(44629) https://exchange.xforce.ibmcloud.com/vulnerabilities/44629
Copyright	Copyright (C) 2008 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.