English | Deutsch | Español | Português
 UserID:
 Passwd:
 new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   		     Search 61204 CVE descriptions
and 32582 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.900044
Category:Windows : Microsoft Bulletins
Title:Windows Media Encoder 9 Remote Code Execution Vulnerability (954156)
Summary:Check for Hotfix and version of Windows Media Encoder
Description:
MS08-053

Overview : This host is missing a critical security update according to
Microsoft Bulletin MS08-053.

Vulnerability Insight :

The flaw is due to a boundary error in the WMEX.DLL ActiveX
control.

Impact : Remote attackers can execute arbitrary code, if a user views
a specially crafted web page, and can successfully exploit to
take complete control of an affected system to view, change, or
delete, or create new accounts with full user rights.

Impact Level : Application/System

Affected Software/OS :
Windows Media Encoder 9 on Windows 2K/XP/2003

Fix : Run Windows Update and update the listed hotfixes or download and
update mentioned hotfixes in the advisory from the below link,
http://www.microsoft.com/technet/security/bulletin/ms08-053.mspx

References : http://www.microsoft.com/technet/security/bulletin/ms08-053.mspx
Cross-Ref: BugTraq ID: 31065
Common Vulnerability Exposure (CVE) ID: CVE-2008-3008
http://www.milw0rm.com/exploits/6454
HPdes Security Advisory: HPSBST02372
http://marc.info/?l=bugtraq&m=122235754013992&w=2
HPdes Security Advisory: SSRT080133
Microsoft Security Bulletin: MS08-053
http://www.microsoft.com/technet/security/Bulletin/MS08-053.mspx
Cert/CC Advisory: TA08-253A
http://www.us-cert.gov/cas/techalerts/TA08-253A.html
CERT/CC vulnerability note: VU#996227
http://www.kb.cert.org/vuls/id/996227
http://www.securityfocus.com/bid/31065
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6018
http://www.vupen.com/english/advisories/2008/2521
http://www.securitytracker.com/id?1020832
CopyrightCopyright (C) 2008 SecPod

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  
 Forgot userid or passwd?
Email/Userid:



Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2013 E-Soft Inc. All rights reserved.