CVE-2008-5232

Microsoft Windows Media Services <4.1.00.3917 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5232. PoCs published by Jeremy Brown.

AI-analyzed exploit summary This exploit leverages a buffer overflow vulnerability in the Microsoft Windows Media Services ActiveX control by supplying an overly long string to the 'CallHTMLHelp' method, potentially leading to arbitrary code execution in the context of the application using the control.

Description

Buffer overflow in the CallHTMLHelp method in the Microsoft Windows Media Services ActiveX control in nskey.dll 4.1.00.3917 in Windows Media Services on Microsoft Windows NT and 2000, and Avaya Media and Message Application servers, allows remote attackers to execute arbitrary code via a long argument. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jeremy Brown · htmldoswindows

https://www.exploit-db.com/exploits/32294

View Code ZIP pw:eip

This exploit leverages a buffer overflow vulnerability in the Microsoft Windows Media Services ActiveX control by supplying an overly long string to the 'CallHTMLHelp' method, potentially leading to arbitrary code execution in the context of the application using the control.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows Media Services ActiveX control (nskey.dll 4.1.00.3917)

No auth needed

Prerequisites: Victim must visit a malicious webpage hosting the exploit · ActiveX control must be installed and enabled in the browser

MITRE ATT&CK