Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2008-3009
HistoryDec 10, 2008 - 1:33 p.m.

CVE-2008-3009

2008-12-1013:33:00
microsoft
www.cve.org
3

AI Score

7.6

Confidence

Low

EPSS

0.114

Percentile

95.3%

JSON

Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1, 9, and 2008 do not properly use the Service Principal Name (SPN) identifier when validating replies to authentication requests, which allows remote servers to execute arbitrary code via vectors that employ NTLM credential reflection, aka “SPN Vulnerability.”

Related

cve 1
prion 1
nvd 1
seebug 1
securityvulns 2
openvas 2
nessus 1
cve
cve
CVE-2008-3009
2008-12-10 14:00:00
prion
prion
Design/Logic Flaw
2008-12-10 14:00:00
nvd
nvd
CVE-2008-3009
2008-12-10 14:00:00
seebug
seebug
Microsoft Windows媒体组件SPN实现远程代码执行漏洞(MS08-076)
2008-12-11 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
2008-12-10 00:00:00
Microsoft Windows Media Player multiple security vulnerabilities
2008-12-10 00:00:00
openvas
openvas
Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
2008-12-10 00:00:00
Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
2008-12-10 00:00:00
nessus
nessus
MS08-076: Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
2008-12-10 00:00:00

AI Score

7.6

Confidence

Low

EPSS

0.114

Percentile

95.3%

JSON
Related for CVELIST:CVE-2008-3009
cve1prion1nvd1seebug1securityvulns2openvas2nessus1