Windows Media Encoder Buffer Overrun Vulnerability
Gravité: : Critique
Identifiant(s) CVE: : CVE-2008-3008,MS08-053
Date du conseil: 21 juillet 2015
Description
Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Windows Media Encoder 9 Series allows remote attackers to execute arbitrary code via a long first argument to the GetDetailsString method, aka "Windows Media Encoder Buffer Overrun Vulnerability."
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1002061
Trend Micro Deep Security DPI Rule Name: 1002760 - Windows Media Encoder Buffer Overrun Vulnerability
Affected software and version:
- microsoft windows-nt 2000
- microsoft windows-nt 2003
- microsoft windows-nt vista
- microsoft windows-nt xp
- microsoft windows_media_encoder 9_series