Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:4017
HistorySep 11, 2008 - 12:00 a.m.

Microsoft Windows Media Player SSPL文件远程代码执行漏洞(MS08-054)

2008-09-1100:00:00
Root
www.seebug.org
15

0.911 High

EPSS

Percentile

98.6%

JSON

BUGTRAQ ID: 30550
CVE ID:CVE-2008-2253
CNCVE ID:CNCVE-20082253

Microsoft Windows Media Player是一款流行的媒体播放程序。
Microsoft Windows Media Player处理样取样速率存在缓冲区溢出,远程攻击者可以利用漏洞构建特殊音频文件触发此漏洞,可导致以应用程序权限执行任意指令。
目前没有详细漏洞细节提供。

Microsoft Windows Media Player 11
可参考如下临时解决方案:
-反注册wmpeffects.dll:
在32-bit Windows系统下:
Regsvr32.exe –u %WINDIR%\system32\wmpeffects.dll
在64-bit Windows系统下:
Regsvr32.exe –u %WINDIR%\syswow64\wmpeffects.dll
怎样恢复反注册操作:
在32-bit Windows系统下:
Regsvr32.exe %WINDIR%\system32\wmpeffects.dll
在64-bit Windows系统下:
Regsvr32.exe %WINDIR%\syswow64\wmpeffects.dll

可参考如下补丁:
Microsoft Windows Media Player 11
Microsoft Security Update for Windows Server 2008 (KB954154)
<a href=“http://www.microsoft.com/downloads/details.aspx?FamilyId=72fc6028-6af4” target=“_blank”>http://www.microsoft.com/downloads/details.aspx?FamilyId=72fc6028-6af4</a> -44ec-8d2a-28c53807d6bc&displaylang=en
Microsoft Security Update for Windows Server 2008 x64 Edition (KB954154)
<a href=“http://www.microsoft.com/downloads/details.aspx?FamilyId=3906512b-26db” target=“_blank”>http://www.microsoft.com/downloads/details.aspx?FamilyId=3906512b-26db</a> -473e-b522-3883ff34a21c&displaylang=en
Microsoft Security Update for Windows Vista (KB954154)
<a href=“http://www.microsoft.com/downloads/details.aspx?FamilyId=2f4118fd-1ffb” target=“_blank”>http://www.microsoft.com/downloads/details.aspx?FamilyId=2f4118fd-1ffb</a> -46da-b922-cd4ca4f9d84e&displaylang=en
Microsoft Security Update for Windows Vista for x64-based Systems (KB954154)
<a href=“http://www.microsoft.com/downloads/details.aspx?FamilyId=334352e7-d41f” target=“_blank”>http://www.microsoft.com/downloads/details.aspx?FamilyId=334352e7-d41f</a> -494f-866d-f1f1745ffd17&displaylang=en
Microsoft Security Update for Windows XP (KB954154)
<a href=“http://www.microsoft.com/downloads/details.aspx?FamilyId=3906512b-26db” target=“_blank”>http://www.microsoft.com/downloads/details.aspx?FamilyId=3906512b-26db</a> -473e-b522-3883ff34a21c&displaylang=en
Microsoft Security Update for Windows XP x64 Edition (KB954154)
<a href=“http://www.microsoft.com/downloads/details.aspx?FamilyId=caf8a45e-a9f8” target=“_blank”>http://www.microsoft.com/downloads/details.aspx?FamilyId=caf8a45e-a9f8</a> -4e91-98fd-87eddbeae64c&displaylang=en

Related

securityvulns 2
cve 1
checkpoint_advisories 2
nessus 1
openvas 2
prion 1
securityvulns
securityvulns
Vulnerability in Windows Media Player Could Allow Remote Code Execution &#40;954154&#41;
2008-09-10 00:00:00
Microsoft Windows Media Player memory corruption
2008-09-10 00:00:00
cve
cve
CVE-2008-2253
2008-09-11 01:10:00
checkpoint_advisories
checkpoint_advisories
Microsoft Media Player Audio Sampling Rate Memory Corruption (MS08-054; CVE-2008-2253)
2012-06-18 00:00:00
WSX Files (CVE-2008-2253)
2008-09-09 00:00:00
nessus
nessus
MS08-054: Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154)
2008-09-10 00:00:00
openvas
openvas
Windows Media Player 11 Remote Code Execution Vulnerability (954154)
2008-09-10 00:00:00
Windows Media Player 11 Remote Code Execution Vulnerability (954154)
2008-09-10 00:00:00
prion
prion
Design/Logic Flaw
2008-09-11 01:10:00

0.911 High

EPSS

Percentile

98.6%

JSON
Related for SSV:4017
securityvulns2cve1checkpoint_advisories2nessus1openvas2prion1