Results 1 to 10 of 29

Thread: 2006 MS Alerts - Q4

Thread Tools
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Previous Post

Next Post

2006-10-30, 20:41 #9
AplusWebMaster

View Profile

View Forum Posts

Visit Homepage
Adviser Team

Join Date

Oct 2005

Location

USA

Posts

6,881
MS DRM DoS vulnerability

FYI...

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5448
Last revised: 10/24/2006
Source: US-CERT/NIST
Overview:
The drmstor.dll ActiveX object in Microsoft Windows Digital Rights Management System (DRM) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long parameter to the StoreLicense function, which triggers "memory corruption" and possibly a buffer overflow.
Impact:
CVSS Severity: 8.0 (High)
Range: Remotely exploitable
Authentication: Not required to exploit
Impact Type: Provides user account access , Allows disruption of service..."

> http://cve.mitre.org/cgi-bin/cvename...=CVE-2006-5448

The machine has no brain.
......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

Quick Navigation Archives-Security Alerts Top

Site Areas
Settings
Private Messages
Subscriptions
Who's Online
Search Forums
Forums Home
Forums
General Safer Networking
1. Announcements
2. Tavern
  1. Word Games
Software
1. Spybot
2. RootAlyzer
  1. RootAlyzer download
General Malware

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

All times are GMT +2. The time now is 19:43.

Copyright © 2000-2022 Safer-Networking Limited. All rights reserved.