| VID |
26370 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (MS08-054, 954154) for 'Remote Code Execution Vulnerabilities in Windows Media Player' has not been applied.
The remote host is running Windows Media Player 11.
There is a vulnerability in the remote version of this software which
may allow an attacker to execute arbitrary code on the remote host.
To exploit this flaw, one attacker would need to set up a rogue rogue
audio file and send it to a victim on the remote host.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms08-054.mspx
* Platforms Affected:
In Microsoft Windows Media Player 11
Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Vista and Windows Vista Service Pack 1
Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1
Windows Server 2008 for 32-bit Systems*
Windows Server 2008 for x64-based Systems* |
| Recommendation |
Apply the appropriate patch (954154) for your system, as listed in Microsoft Security Bulletin MS08-054 at http://www.microsoft.com/technet/security/bulletin/ms08-054.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2008-2253 (CVE) |
| Related URL |
30550 (SecurityFocus) |
| Related URL |
(ISS) |
|
