Executive Summary
Summary | |
---|---|
Title | Update for Windows Autorun |
Informations | |||
---|---|---|---|
Name | KB967940 | First vendor Publication | 2009-02-24 |
Vendor | Microsoft | Last vendor Modification | 2011-02-22 |
Severity (Vendor) | N/A | Revision | 2.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Microsoft is announcing the availability of updates to the Autorun feature that help to restrict AutoPlay functionality to only CD and DVD media on supported editions of Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008. Restricting AutoPlay functionality to only CD and DVD media can help protect customers from attack vectors that involve the execution of arbitrary code by Autorun when inserting a USB flash drive, network shares, or other non-CD and non-DVD media containing a file system with an Autorun.inf file. Microsoft released the following updates related to this advisory.
General InformationOverviewPurpose of Advisory: To provide clarification and notification of the availability of non-security updates to correct the functionality of the NoDriveTypeAutoRun registry key and restrict the AutoPlay functionality on affected systems. These updates affect the software that is listed in the Related Software table below. Advisory Status: Microsoft Knowledge Base Articles and associated updates were released. Recommendation: Review the referenced Knowledge Base Articles and apply the appropriate updates.
This advisory discusses the following software.
[1]These operating systems are past their support life cycle. For more information about the product lifecycle, visit the Microsoft Support Lifecycle Web site. [2]For these operating systems, in order to take advantage of the registry key settings that disable Autorun, customers must install the security update provided in the MS08-038 (950582) security bulletin. Frequently Asked QuestionsDo these updates change my current Autorun settings? How is user experience changed after these updates are installed? After installing the 971029 update, customers may experience the following AutoPlay behavior:
How do I disable Autorun? If systems already have the update offered in Knowledge Base Article 953252 installed, does this update need to be installed as well? If systems already have the updates from Knowledge Base Article 953252 installed, will they also be offered updates from Knowledge Base Article 967715? Do the updates offered in Knowledge Base Article 953252 or Knowledge Base Article 967715 disable Autorun capabilities? Can group policy be used to change the registry settings in order to disable Autorun functionality? Where are the updates for Windows Vista and Windows Server 2008? Suggested Actions
|
Original Source
Url : http://www.microsoft.com/technet/security/advisory/967940.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 5 |
OpenVAS Exploits
Date | Description |
---|---|
2009-02-02 | Name : Microsoft Autorun Arbitrary Code Execution Vulnerability (08-038) File : nvt/secpod_ms08-038.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
43434 | Microsoft Windows Vista NoDriveTypeAutoRun Auto-Play Bypass |