Security Alert: Windows Media Exploit
Severity: High
11 December, 2007
Summary:
Two security bulletins describing vulnerabilities that affect components Windows uses to handle multimedia have been released.
A remote attacker could exploit the flaws in these components to execute code on your website that would enable them to take complete control of your website user’s (visitor) PC
A vulnerability in Windows Advanced System Format (ASF) Media File Format enables a remote attacker to take complete control of your website user’s (visitor) PC by enticing them into opening a specially crafted ASF file, or enticing you to add a file to your web site that contains an ASF stream, the attacker can then exploit this vulnerability to execute code on your user's computer, with your user's privileges.
The potentially dangerous files that could trigger these flaws are:
-
AVI Video files (.avi)
-
WAV sound files (.wav)
-
If you provide 3rd party multimedia files on your website you should immediately test your files and remove any malicious media. Web sites suspected of distributing malicious code or download will be automatically suspended until proven safe.
If you manage a Windows network, you should download, test, and deploy the appropriate patches throughout your network as soon as possible.
Solution Path
Microsoft's security bulletins detail vulnerabilities found in two Windows components used to handle multimedia.
DirectX
- MS07-064: Remote Code Execution Vulnerabilities in DirectX
- MS07-068: Windows Media File Vulnerability
Microsoft rating: Critical.