Executive Summary
Informations | |||
---|---|---|---|
Name | MS06-078 | First vendor Publication | 2006-12-12 |
Vendor | Microsoft | Last vendor Modification | 2008-11-25 |
Severity (Vendor) | Critical | Revision | 6.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V6.1 (November 25, 2008): Bulletin updated to correct the filename, Wwmvcore.dll, to Wmvcore.dll for file information for Windows Media Format 9.5 Series Runtime on Windows XP Professional x64 Edition and Windows Server 2003 x64 Edition.Summary: This update resolves two newly discovered vulnerabilities. These vulnerabilities are documented in the Vulnerability Details section of this bulletin. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS06-078.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:536 | |||
Oval ID: | oval:org.mitre.oval:def:536 | ||
Title: | Windows Media Format ASF Parsing Vulnerability | ||
Description: | Buffer overflow in the Windows Media Format Runtime in Microsoft Windows Media Player (WMP) 6.4 and Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-4702 | Version: | 6 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Windows Media Format Runtime 7.1 Windows Media Format Runtime 9.0 Windows Media Format Runtime 9.5 Windows Media Player 6.4 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:669 | |||
Oval ID: | oval:org.mitre.oval:def:669 | ||
Title: | Windows Media Format ASX Parsing Vulnerability | ||
Description: | Heap-based buffer overflow in the WMCheckURLScheme function in WMVCORE.DLL in Microsoft Windows Media Player (WMP) 10.00.00.4036 on Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long HREF attribute, using an unrecognized protocol, in a REF element in an ASX PlayList file. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-6134 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Windows Media Format Runtime 7.1 Windows Media Format Runtime 9.0 Windows Media Format Runtime 9.5 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 | |
Os | 2 | |
Os | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
30819 | Microsoft Windows Media Player ASX Playlist Handling Overflow |
30818 | Microsoft Windows Media Player ASF Parsing Overflow |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Windows Media Player ASF marker object parsing buffer overflow attempt RuleID : 9643 - Revision : 10 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows Media Player ASF codec list object parsing buffer overflow ... RuleID : 9642 - Revision : 10 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows Media Player ASF simple index object parsing buffer overflo... RuleID : 9641 - Revision : 10 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows Media Player ASX file ref href buffer overflow attempt RuleID : 9625 - Revision : 16 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows Media Player ASX file ref href buffer overflow attempt RuleID : 20653 - Revision : 8 - Type : FILE-MULTIMEDIA |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-12-12 | Name : Arbitrary code can be executed on the remote host through the Media Format Se... File : smb_nt_ms06-78.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:45:34 |
|
2014-01-19 21:30:03 |
|
2013-05-11 12:21:57 |
|