Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3009

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-3009
Last Modified 07 Mar 2011 10:10:05
Published 10 Dec 2008 09:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3009

Summary

Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1, 9, and 2008 do not properly use the Service Principal Name (SPN) identifier when validating replies to authentication requests, which allows remote servers to execute arbitrary code via vectors that employ NTLM credential reflection, aka "SPN Vulnerability."

Vulnerable Systems

Application

  • Microsoft Windows Media Format Runtime 11

  • Microsoft Windows Media Format Runtime 7.1

  • Microsoft Windows Media Format Runtime 9

  • Microsoft Windows Media Format Runtime 9.5

  • Microsoft Windows Media Player 6.4

  • Microsoft Windows Media Services 2008

  • Microsoft Windows Media Services 4.1

  • Microsoft Windows Media Services 9


References

CERT - TA08-344A

MS - MS08-076

VUPEN - ADV-2008-3388

SECTRACK - 1021373

SECTRACK - 1021372

BID - 32653

SECUNIA - 33058

Related Patches

MS08-076 959807 952068 Security Update for Windows Media Services 9

MS08-076 959807 952069 Security Update for Windows Media Format 9.0

MS08-076 959807 952069 Security Update for Windows Media Format 9.5 (Rev 2)

MS08-076 959807 952069 Security Update for Windows Media Format 7.1

MS08-076 959807 954600 Security Update for Windows Media Player 6.4

MS08-076 959807 952069 Security Update for Windows Media Format 11


Last Updated: 27 May 2016 10:48:04