----------------------------------------------------------------------

Did you know that a change in our assessment rating, exploit code
availability, or if an updated patch is released by the vendor, is
not part of this mailing-list?

Click here to learn more:
http://secunia.com/advisories/business_solutions/

----------------------------------------------------------------------

TITLE:
Microsoft Windows Media Products Two Vulnerabilities

SECUNIA ADVISORY ID:
SA33058

VERIFY ADVISORY:
http://secunia.com/advisories/33058/

CRITICAL:
Highly critical

IMPACT:
Security Bypass, Exposure of sensitive information, System access

WHERE:
>From remote

SOFTWARE:
Microsoft Windows Media Services 9.x
http://secunia.com/advisories/product/16900/
Microsoft Windows Media Services 2008
http://secunia.com/advisories/product/20710/
Microsoft Windows Media Player 6.x
http://secunia.com/advisories/product/539/
Microsoft Windows Media Format Runtime 9.x
http://secunia.com/advisories/product/16898/
Microsoft Windows Media Format Runtime 7.x
http://secunia.com/advisories/product/16897/
Microsoft Windows Media Format Runtime 11.x
http://secunia.com/advisories/product/16899/
Microsoft Windows Media Services 4.x
http://secunia.com/advisories/product/1773/

DESCRIPTION:
Two vulnerabilities have been reported in several Microsoft Windows
Media products, which can be exploited by malicious people to bypass
certain security restrictions or compromise a vulnerable system.

1) An error within the Service Principal Name (SPN) implementation
when handling NTLM credentials can be exploited to gain access with
the privileges of a target user via replay attacks.

2) An error when handling ISATAP URLs can be exploited to disclose
NTLM credentials and gain access with the privileges of a target user
via replay attacks.

SOLUTION:
Apply patches.

Windows Media Player 6.4 on Windows 2000 SP4:
http://www.microsoft.com/downloads/details.aspx?FamilyId=C33D558E-45F9-4E85-B48C-03BD0E8CB4BC

Windows Media Player 6.4 on Windows XP SP2/SP3:
http://www.microsoft.com/downloads/details.aspx?FamilyId=99241309-E644-4088-A8F3-38837FAB4037

Windows Media Player 6.4 on Windows XP Professional x64 Edition
(optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=946D47C9-B208-4FAB-8EF6-774413D61BC8

Windows Media Player 6.4 on Windows Server 2003 SP1/SP2:
http://www.microsoft.com/downloads/details.aspx?FamilyId=2315CE20-2F46-42C2-BB40-045F003409D7

Windows Media Player 6.4 on Windows Server 2003 x64 Edition
(optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=4C29BED9-1B88-4D2F-80A5-305C2BEDD89F

Windows Media Format Runtime 7.1/9.0 on Windows 2000 SP4:
http://www.microsoft.com/downloads/details.aspx?FamilyId=6A459497-0AB8-41CB-87D0-B551631D8D8A

Windows Media Format Runtime 9.0/9.5/11 on Windows XP SP2:
http://www.microsoft.com/downloads/details.aspx?FamilyId=504F816C-F554-4B93-AC28-B085574D9BAC

Windows Media Format Runtime 9.0/9.5/11 on Windows XP SP3:
http://www.microsoft.com/downloads/details.aspx?FamilyId=AD76FCF3-A2F9-4E36-BD1B-C1536749173C

Windows Media Format Runtime 9.5/11 on Windows XP Professional x64
Edition (optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=644EF023-EE40-45B0-9C9D-C76D9FAB0005

Windows Media Format Runtime 9.5 x64 Edition on Windows XP
Professional x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=AE9E8B07-5354-42F3-A226-BA2193244524

Windows Media Format Runtime 11 x64 Edition on Windows XP
Professional x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=2DADC017-2BE5-4240-AB8F-0291756DCA6B

Windows Media Format Runtime 9.5 on Windows Server 2003 SP1/SP2:
http://www.microsoft.com/downloads/details.aspx?FamilyId=D8958248-C889-499E-A6A9-3B394CDB27EA

Windows Media Format Runtime 9.5 on Windows Server 2003 x64 Edition
(optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=2278022E-A716-46C0-BEDF-D626933BD815

Windows Media Format Runtime 9.5 x64 Edition on Windows Server 2003
x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=AE9E8B07-5354-42F3-A226-BA2193244524

Windows Media Format Runtime 11 x64 Edition on Windows Server 2003
x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=2DADC017-2BE5-4240-AB8F-0291756DCA6B

Windows Media Format Runtime 11 on Windows Vista (optionally with
SP1):
http://www.microsoft.com/downloads/details.aspx?FamilyId=1FCDC8DD-26D9-4D1A-8B3F-7B6A21A95999

Windows Media Format Runtime 11 on Windows Vista x64 Edition
(optionally with SP1):
http://www.microsoft.com/downloads/details.aspx?FamilyId=8839F6CD-DFBF-448C-BF1E-1DA9BB5F3F25

Windows Media Format Runtime 11 on Windows Server 2008 for 32-bit
Systems:
http://www.microsoft.com/downloads/details.aspx?FamilyId=91EC4195-BC1C-444E-A7B0-EBDE46C088FA

Windows Media Format Runtime 11 on Windows Server 2008 for x64-based
Systems:
http://www.microsoft.com/downloads/details.aspx?FamilyId=8CAB6FE8-161D-4D8C-9772-EB3174A2C3C3

Windows Media Services 4.1 on Windows 2000 SP4:
http://www.microsoft.com/downloads/details.aspx?FamilyId=58B7D241-CEF6-48FA-AA52-017695F71DB1

Windows Media Services 9 Series on Windows Server 2003 SP1/SP2:
http://www.microsoft.com/downloads/details.aspx?FamilyId=E71ABC2D-D60E-444A-9B7B-062C5805FE9E

Windows Media Services 9 Series on Windows Server 2003 x64 Edition
(optionally with SP2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=E0030155-1A9A-46CC-BBC8-6D0D1ED65C1F

Windows Media Services 2008 on Windows Server 2008 for 32-bit
Systems:
http://www.microsoft.com/downloads/details.aspx?FamilyId=FFB5D945-7F98-4849-B020-ED4873FA42DF

Windows Media Services 2008 on Windows Server 2008 for x64-based
Systems:
http://www.microsoft.com/downloads/details.aspx?FamilyId=0204A366-5641-4036-9CB0-A46D04AF9D72

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
MS08-076 (KB959807):
http://www.microsoft.com/technet/security/Bulletin/MS08-076.mspx

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------