微点交流论坛

标题: Windows Media File Format 中的漏洞可能允许远程执行代码 [打印本页]

作者: pioneer 时间: 2007-12-12 09:52 标题: Windows Media File Format 中的漏洞可能允许远程执行代码

来源

microsoft.com.cn

操作系统

Microsoft Windows XP Professional
Microsoft Windows XP Home Edition
Microsoft Windows Vista
Microsoft Windows Storage Server 2003
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows 2000 Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server

未受影响的操作系统

安装在 Microsoft Windows 2000 上的 Windows Media Player 6.4

安装在 Windows XP 上的 Windows Media Player 6.4

安装在 Windows Server 2003 上的 Windows Media Player 6.4

安装在 Microsoft Windows 2000 上的 Windows Media Player 6.4

软件名

Microsoft Windows Media Format Runtime 9.x
Microsoft Windows Media Format Runtime 7.x
Microsoft Windows Media Format Runtime 11.x
Microsoft Windows Media Services 9.x

描述

如果用户在 Windows Media Format Runtime 中查看特制文件【ASF(Advanced Systems Format)】，此漏洞可能允许远程执行代码。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。
成功执行后可执行任意代码

解决方案

应用补丁（英文）
Windows 2000 SP4 with Windows Media Format Runtime 7.1:
http://www.microsoft.com/downloa ... c-b62b-2fa7a32f369e

Windows 2000 SP4 with Windows Media Format Runtime 9:
http://www.microsoft.com/downloa ... c-b62b-2fa7a32f369e

Windows XP SP2 with Windows Media Format Runtime 9:
http://www.microsoft.com/downloa ... e-8275-20f4e84f2c92

Windows XP SP2 with Windows Media Format Runtime 9.5:
http://www.microsoft.com/downloa ... e-8275-20f4e84f2c92

Windows XP Professional x64 Edition (optionally with SP2) with
Windows Media Format Runtime 9.5:
http://www.microsoft.com/downloa ... f-a4b4-6c0e9476ed51

Windows Server 2003 SP1/SP2 with Windows Media Format Runtime 9.5:
http://www.microsoft.com/downloa ... 6-97c2-fb5ea7018159

Windows Server 2003 x64 Edition (optionally with SP2) with Windows
Media Format Runtime 9.5:
http://www.microsoft.com/downloa ... 5-8ec1-dab8c7e33bd4

Windows XP Professional x64 Edition (optionally with SP2) with
Windows Media Format Runtime 9.5 x64 Edition:
http://www.microsoft.com/downloa ... e-9321-4970b80f4a5a

Windows Server 2003 x64 Edition (optionally with SP2) with Windows
Media Format Runtime 9.5 x64 Edition:
http://www.microsoft.com/downloa ... 5-8ec1-dab8c7e33bd4

Windows XP SP2 with Windows Media Format Runtime 11:
http://www.microsoft.com/downloa ... e-8275-20f4e84f2c92

Windows XP Professional x64 Edition (optionally with SP2) with
Windows Media Format Runtime 11:
http://www.microsoft.com/downloa ... d-b189-6f3da77a88e6

Windows Vista with Windows Media Format Runtime 11:
http://www.microsoft.com/downloa ... 7-9a24-c82c8fb379db

Windows Vista x64 Edition with Windows Media Format Runtime 11:
http://www.microsoft.com/downloa ... 4-9fb3-30c83a9cfb9c

Windows Server 2003 SP1/SP2 with Windows Media Services 9.1:
http://www.microsoft.com/downloa ... 0-9c2d-ebfa5c671b9f

Windows Server 2003 x64 Edition (optionally with SP2) with Windows
Media Services 9.1 x64 Edition:
http://www.microsoft.com/downloa ... b-96bf-4ead4dfdd95d

欢迎光临微点交流论坛 (http://bbs.micropoint.com.cn/)

bbs.micropoint.com.cn