Signature Detail

Short Name	HTTP:STC:DL:MS-MEDIA-DVR
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Microsoft Windows Media DVR-MS File Memory Corruption
Release Date	2011/12/22
Update Number	2052
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Windows Media DVR-MS File Memory Corruption

This signature detects attempts to exploit a known vulnerability against Microsoft Windows Media Player and Windows Media Center. A successful attack can lead to memory corruption and arbitrary code execution.

Extended Description

Microsoft Windows Media Player and Windows Media Center are prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user into opening a malicious file with the vulnerable application. A successful exploit will allow arbitrary code to run in the context of the currently logged-in user.

Affected Products

Microsoft Windows 7 for 32-bit Systems SP1
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows Vista SP2
Microsoft Windows Vista x64 Edition SP2
Microsoft Windows XP Media Center Edition 2005 SP3
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows XP Service Pack 3

References

BugTraq: 50957
CVE: CVE-2011-3401

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Microsoft Windows Media DVR-MS File Memory Corruption

Extended Description

Affected Products

References