|
Malformed
Embedded Windows Media Player 7 "OCX Attachment" Vulnerability
USSR Advisory
Code: USSR-2000053
Release
Date:
September 26, 2000
Systems Affected:
Outlook 2000
Microsoft Windows Media Player 7
THE PROBLEM:
The USSR Team has found a problem in the Windows Media Player
7 ActiveX control, which could be used in a denial of service
attack against RTF-enabled e-mail clients such as Outlook 2000
and Outlook Express.
If the affected
control were programmatically embedded into an RTF mail and then
sent to another user, the user's mail client would fail when he
closed/moved the mail.
NOTE:
We take no responsibility for this code. It is for educational
purposes only.
EXPLOIT:
Malformed
WMP Embedded RTF/Email Spawner.
Windows Console
Version:
http://www.ussrback.com/wmp/wmpoutlook.exe
Windows Console Version Source:
http://www.ussrback.com/wmp/wmpoutlook.zip
Vendor Status:
Informed 8/19/2000
More Information:
http://www.microsoft.com/technet/security/bulletin/ms00-068.asp
Microsoft Security Bulletin MS00-068: Frequently Asked Questions,
http://www.microsoft.com/technet/security/bulletin/fq00-068.asp
Fix:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=24421
Program Url:
http://www.microsoft.com/windows/windowsmedia/en/default.asp
Related Links:
Underground Security Systems Research:
http://www.ussrback.com
CrunchSp Product:
http://www.crunchsp.com
About:
USSR is an
emerging security company based in South America devoted to research
about computers, network security, and software protection systems.
One of the main objectives of USSR is to develop and implement
new security and protection systems based on our knowledge and
experience.
However, we
believe that the way we implement security solutions, can make
a difference, CrunchSP is a good example. In our day-to-day research
we detect vulnerability issues in different applications that
we publish on our advisory board.
Most of USSR
programmers and partners have more than 12 years of experience
in different computer based applications, with great knowledge
in high and low level programming languages.
For further
information on USSR, feel free to contact us by email.
USSR has
assembled some of the world's greatest software developers and
security consultants to help us provide our customers this great
range of security services:
* Network
Penetration Testing
* Security Application development
* Application Security Testing and Certification
* Security Based on Security Tools
* Cryptography
* Emergency Response Team
* Firewalling
* Virtual Private Networking
* Intrusion Detection
* Support and maintenance
Copyright
(c) 1999-2000 Underground Security Systems Research. Permission
is hereby granted for the redistribution of this alert electronically.
It is not to be edited in any way without explicit consent of
USSR. If you wish to reprint whole or any part of this alert in
any other medium excluding electronic medium, please e-mail labs@ussrback.com
for permission.
Disclaimer:
The information within this paper may change without notice. We
may not be held responsible for the use and/or potential effects
of these programs or advisories. Use them and read them at your
own risk or not at all. You solely are responsible for this judgment.
Feedback:
Please send suggestions, updates, and comments to:
Underground Security Systems Research
mail:labs@ussrback.com
http://www.ussrback.com
|