Info

Disclosure

Sep 09, 2008

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Sep 09, 2008

Description

A buffer overflow exists in Windows. The wmex.dll ActiveX control fails to validate data passed to the GetDetailsString method resulting in a stack overflow. With a specially crafted web site, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access, Local / Remote, Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: Vendor Verified, Vendor Verified, Coordinated Disclosure

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	XP SP2
		XP Pro x64
		2003 Server SP2
		2003 Server x64
		2003 Server SP1
		2003 Server x64 SP2
		2008 Server 32-bit
		2000 SP4
		Vista
		XP Pro x64 SP2
		2008 Server x64
		Vista SP1
		Vista x64
		Vista x64 SP1
		XP SP3

References

Security Tracker: 1020832
CVE ID: 2008-3008 (see also: NVD)
Bugtraq ID: 31065
Secunia Advisory ID: 31724
Metasploit ID: 47962
OVAL ID: 6018
Milw0rm: 6454
Exploit Database: 6454
Microsoft Knowledge Base Article: 954156
CERT VU: 996227
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2008-09/0281.html
http://marc.info/?l=bugtraq&m=122235754013992&w=2
Generic Exploit URL: http://immunitysec.com
http://www.saintcorporation.com/cgi-bin/exploit_info/windows_media_encoder_wmex
Microsoft Security Bulletin: MS08-053
CERT: TA08-253A

Credit

Nguyen Minh Duc -
Le Manh Tung -

Direct URL: http://osvdb.org/47962

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit