NTA Monitor

Latest News

New version of network scanning tool arp-scan released

15th March 2011 A new version of a respected and popular network scanning tool has been released. Read More

Tests show rise in number of vulnerabilities affecting web applications with SQL Injection and XSS most common flaws

1st March 2011 SQL injection and cross-site scripting (XSS) were the most common flaws found in web applications in 2010 according to results from tests carried out by NTA Monitor. Read More

Assess risk to manage effects of budget cuts

9th February 2011 Signs of economic recovery may be appearing in some industries, but for most organisations - particularly in the public sector - budget cuts and cost savings are here to stay for the foreseeable future. Read More

"Basic security threats not changed in 15 years"

1st February 2011 There may have been significant technological advances to the hardware and software organisations use, but according to Roy Hills, who co-founded NTA Monitor in 1996, the basic security threats have not changed in the last 15 years. Read More
Date: 1st March 2006
Risk: High

Two newly discovered 'highly critical' vulnerabilities in Microsoft programs enable remote code execution. One of the issues is in Internet Explorer and the other in Windows Media Player. The flaw in Internet Explorer allows malicious users to create a WMF file that would execute remote code if a user visits a malicious website or opens a malicious email attachment. Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 is affected and Microsoft recommends installing updates as a matter of urgency.

The other highly critical flaw has been discovered in Windows Media Player. By taking advantage of the way that Media Player handles bitmap images, a hacker can construct a malicious bitmap file to enable remote code execution when a user visits a website or opens it as an attachment.

The other Microsoft flaws are classified as 'important' by Microsoft and could result in denial of service, remote code execution, privilege elevation and information disclosure in a variety of programs. One affected program is Powerpoint, but the flaw can be fixed by installing the update from Microsoft's website. The Information Disclosure vulnerability could enable a hacker to access Temporary Internet Files, which could provide information for a hacker to attempt to compromise the affected system.

Remote code execution flaws have been found in the Windows Web Client Service and Windows Media Player. The Web Client Service vulnerability could allow an attacker to take complete control of an affected system, however, the hacker would need to have valid logon credentials and be able to log on locally to exploit the vulnerability. The Windows Media Player flaw exists in non-Microsoft Internet browsers and arises when the plug-in handles a malformed EMBED element. An attacker could potential take control of a system by creating a malicious EMBED element to allow remote code execution.

There is also a new TCP/IP vulnerability, which if exploited, could result in denial of service, through an attacker sending a specially crafted IGMP packet.

The final flaw highlighted in the February bulletin addresses a new risk discovered in Windows and Office Korean Input Method Editor (IME). The issue lies with an attacker being able to take control of an entire system by exploiting a privilege escalation vulnerability; but the user would have to be able to interactivity log onto the affected system.

References

http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1165520,00.html http://www.microsoft.com/technet/security/bulletin/ms06-feb.mspx