VULHUB ™

Microsoft Media Services has been reported prone to a buffer overflow vulnerability. This is due to a problem with how the logging ISAPI extension handles incoming client MX_STATS_LogLine: header field data in POST requests. The logging facility may attempt to write excessive data to an undersized buffer when handling a malformed HTTP client request. This could trigger a denial of service or remote arbitrary code execution in IIS, which is exploitable through Media Services.

Microsoft Media Services has been reported prone to a buffer overflow vulnerability. This is due to a problem with how the logging ISAPI extension handles incoming client MX_STATS_LogLine: header field data in POST requests. The logging facility may attempt to write excessive data to an undersized buffer when handling a malformed HTTP client request. This could trigger a denial of service or remote arbitrary code execution in IIS, which is exploitable through Media Services.