NASLDB: MS09-038: Vulnerabilities in Windows Media File Processing Could Allow Remote Code Execution (971557)
General
ID: 40557
Name: MS09-038: Vulnerabilities in Windows Media File Processing Could Allow Remote Code Execution (971557)
Summary: Checks version of Avifil32.dll
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:POC/RL:OF/RC:C
Port: 139
Family: Windows : Microsoft Bulletins
Type: Local
Description
The remote Windows host is affected by two vulnerabilities involving
the way in which AVI headers are processed and AVI data is validated
that could be abused to execute arbitrary code remotely.
If an attacker can trick a user on the affected system into opening
a specially crafted AVI file, he may be able to leverage these issues
to execute arbitrary code subject to the user’s privileges.
Exploiting
Exploit Available: True
Exploitability Ease: Exploits are available
Sources
CVE: CVE-2009-1545
OSVDB: –
Bugtraq: 35967
scipID: –
Timeline
Vulnerability Disclosure: 2009/08/11
Patch Release: 2009/08/11
Plugin Release: 2009/08/11
Plugin
Version: 1.15
Filename: smb_nt_ms09-038.nasl
Filesize: 5257 bytes
MD5 Hash: 5af2ea187f95919edd547640f3c81ba4
Identification: Host/patch_management_checks
Require Keys: SMB/MS_Bulletin_Checks/Possible
Dependencies: "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl"
Copyright: This script is Copyright© 2009-2012 Tenable Network Security, Inc.
- Ultimi plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack