MS.Windows.Media.Services.Nskey.Dll.ActiveX.Access
Description
This indicates an attack attempt against a buffer-overflow vulnerability
in Microsoft Windows Media Services.
The vulnerability is located in the "nskey.dll" ActiveX control through
misuse of the "CallHTMLHelp" method. An attacker may exploit this vulnerability to execute arbitrary code, or cause the program to crash.
Affected Products
Microsoft Windows Media Services 0
Microsoft Windows 2000 Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server
Microsoft nskey.dll 4.1 3917
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Disable this ActiveX Control by setting its kill bit.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |