Nortel Response to Microsoft Security Bulletin MS08-054
| Description: |
On September 9th, 2008, Microsoft released a security update MS08-0054 - Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154). Some Nortel products contain this software as a component and thus are potentially affected by the vulnerabilities addressed. This bulletin provides a multi-product consolidated response for the Nortel products which are potentially affected. MS08-054 addresses the following potential vulnerabilities: 1. Windows Media Player Sampling Rate Vulnerability - CVE-2008-2253 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2253) A remote code execution vulnerability exists in Windows Media Player 11. An attacker could exploit the vulnerability by constructing a specially crafted audio file that could allow remote code execution when streamed from a Windows Media server using Windows Media Player 11. An attacker who successfully exploited this vulnerability could take complete control of an affected system Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical Before taking any action please ensure that you are viewing the latest official version of this security advisory by referencing http://www.nortel.com/securityadvisories For more information: Please contact your next level of support or visit http://www.nortel.com/contact for support numbers within your region. Nortel security advisories: http://nortel.com/securityadvisories Nortel Partner Information Center (PIC) website: http://www.nortelnetworks.com/pic |
| Type: |
Security Advisories |
| Number: |
2008009059, Rev 1 |
| Status: |
Retired |
| Date: |
2009-03-08 |
