View Full Version : Media Player Critical Alert
Carl G.
09-10-2008, 07:46 AM
Why do I not like using Media Player? It's a hit for hits!
(Here's the latest from C-Net)
MS08-054: Critical
Entitled "Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154)," this bulletin affects all supported and affected editions of Windows Media Player 11. This bulletin addresses the issues detailed in CVE-2008-2253. Microsoft says there is a "vulnerability in Windows Media Player that could allow remote code execution when a specially crafted audio file is streamed from a Windows Media server. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system."
bcorkery
09-10-2008, 08:08 AM
Ouch!
Thanks for the heads up Carl
Dave Labrecque
09-10-2008, 01:24 PM
"...If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system."
You say that like it's a bad thing.
Carl G.
09-10-2008, 03:45 PM
You say that like it's a bad thing.
*** I **** didn't say that. I just passed on what was reported. :)
Microsoft reports it as CRITICAL. You take it from there.
Dave Labrecque
09-10-2008, 06:07 PM
*** I **** didn't say that. I just passed on what was reported. :)
Microsoft reports it as CRITICAL. You take it from there.
Ah... but critically good, or critically bad? :p OK, that doesn't even make sense.
Carl, I was kidding. ;) It definitely sounds like a bad thing.
IraSeigel
09-10-2008, 06:28 PM
...when a specially crafted audio file ...
Must be Sonar...:)
Bud Johnson
09-10-2008, 07:30 PM
Just give me a ping! One ping only please!
Pedro Itriago
09-11-2008, 04:15 AM
My memory might be a bit fuzzy here but, don't all MS "critical alert"s sound the same? I mean, a vulnerability that might allow control of your computer by a third party?
Why do I not like using Media Player? It's a hit for hits!
(Here's the latest from C-Net)
MS08-054: Critical
Entitled "Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154)," this bulletin affects all supported and affected editions of Windows Media Player 11. This bulletin addresses the issues detailed in CVE-2008-2253. Microsoft says there is a "vulnerability in Windows Media Player that could allow remote code execution when a specially crafted audio file is streamed from a Windows Media server. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system."
IraSeigel
09-11-2008, 08:07 AM
My memory might be a bit fuzzy here but, don't all MS "critical alert"s sound the same? I mean, a vulnerability that might allow control of your computer by a third party?
Pedro, your memory is, indeed, fuzzy. However, you are also correct!:)
Ira
Carl G.
09-11-2008, 09:02 AM
Just give me a ping! One ping only please!
Ping RedbookRecording.com
OK....
but don't ask again :)
AcousticGlue
09-12-2008, 03:57 AM
And believe me, every OS has issues with security and patching. The Unix people at work have to stay busier than the Windows folks.
Powered by vBulletin® Version 4.2.3 Copyright © 2024 vBulletin Solutions, Inc. All rights reserved.