Microsoft Security Bulletin MS06-078 - Vulnerability in Windows Media Format Could Allow Remote Code Execution (923689)

This bulletin addresses a critical remote code vulnerability in Windows Media Player making it a workstation/terminal services vulnerability. Note that even if you've installed Windows Media Player you are still vulnerable since legacy versions of WMP remain installed for backwards compatibility. Note that this bulletin may require more than one update be installed. Exploit details are public so i recommend testing and installing the update ASAP and/or setting the kill bit immediately on Windows Media Player 6.4,7.1,9 and 10 using my ActiveX Control Killer ADM file and group policy. Click here for details and a video demonstration.

Get this valuable commentary each month as soon as Microsoft releases security updates!

Free log parser scripts, a clear explanation of Microsoft's latest security bulletin, helpful security tips, how-to's and more.

Upcoming Webinars by Randy Franklin Smith

Beyond Single Event Analysis: Analyzing Multiple Events to Reduce False Positives and Gain Deeper Insight into the Security Log

Auditing File Access with the Windows Server 2008 Security Log: The Good, Bad and Ugly

How to Secure Web Based Applications with 2-Factor Authentication

Eliminating Admin Rights on Workstations and Laptops: Avoiding the Pitfalls and Making it Work in the Real World

Additional Links

A
D
V

NEW! GFI EventsManager 8 Extends Event Management Capabilities. Find Out More.

Get Randy's Security Log Resource Kit

Sick of LimitLogin? Get UserLock for real logon control