Microsoft Security Advisory: Vulnerability in Microsoft Video ActiveX control could allow remote code execution

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, visit the following Microsoft Web site:
RESOLUTION
Microsoft has completed the investigation into a public report of this vulnerability. We have issued security bulletin MS09-032 to address this issue. For more information about this issue, including download links for an available security update, please review security bulletin MS09-032. The vulnerability that is addressed is the Microsoft Video ActiveX Control Vulnerability - CVE-2008-0015.

For more information about how to obtain the security update release that resolves this issue, click the following article number to view the article in the Microsoft Knowledge Base:
973346 MS09-032: Cumulative Security Update of ActiveX Kill Bits
For more information about security bulletin MS09-032, visit the following Microsoft Web page: For more information about the Video ActiveX Control Vulnerability, visit the following Microsoft Web page:
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000
Properties

Article ID: 972890 - Last Review: 07/14/2009 20:13:10 - Revision: 2.1

Microsoft Windows Server 2003 Service Pack 2, Microsoft Windows XP Service Pack 2, Microsoft Windows XP Service Pack 3

  • kbexpertiseinter kbinfo kbsecadvisory kbsecurity kbsecvulnerability kbsurveynew KB972890
Feedback