CVE-2008-3009
The CVE-2008-3009 issue affects Windows Media components: Windows Media Player 6.4, Windows Media Format Runtime (7.1–11), and Windows Media Services (4.1, 9, 2008). It stems from improper handling of SPNs during NTLM authentication, enabling a remote attacker to perform credential reflection and...