Vulnerabilities In Windows Media Components Could Allow Remote Code Execution (959807) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS08-076.

Impact

Successful exploitation could allow attackers to disclose NTLM credentials to gain access with the privileges of a target user via replay attacks. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link. http://www.microsoft.com/technet/security/bulletin/ms08-076.mspx

Insight

The flaws are due to - an error within the Service Principal Name (SPN) implementation when handling NTLM credentials. - an error when handling ISATAP URLs.

Affected

Microsoft Windows 2K/XP/2003

References

http://www.microsoft.com/technet/security/bulletin/ms08-076.mspx

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-3009, CVE-2008-3010

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Microsoft .NET Framework Remote Code Execution Vulnerability (3000414)
Cumulative Security Update for Internet Explorer (950759)
Active Directory Could Allow Remote Code Execution Vulnerability (957280)
Microsoft .NET Framework Open Data Protocol DOS Vulnerability (2769327)
Microsoft IIS FTP Server 'Malformed FTP List Request' DOS Vulnerability

Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)

Take action and discover your vulnerabilities