[NT] Vulnerabilities in Pragmatic General Multicast (PGM) Allows Denial of Service (MS08-036)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

The SecuriTeam alerts list - Free, Accurate, Independent.

Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html

- - - - - - - - -



Vulnerabilities in Pragmatic General Multicast (PGM) Allows Denial of
Service (MS08-036)
------------------------------------------------------------------------


SUMMARY

This security update resolves two privately reported vulnerabilities in
the Pragmatic General Multicast (PGM) protocol that could allow a denial
of service if malformed PGM packets are received by an affected system. An
attacker who successfully exploited this vulnerability could cause a user
s system to become non-responsive and to require a restart to restore
functionality. Note that the denial of service vulnerability would not
allow an attacker to execute code or to elevate their user rights, but it
could cause the affected system to stop accepting requests.

This security update is rated Important for all supported editions of
Windows XP and Windows Server 2003 and rated Moderate for all supported
editions of Windows Vista and Windows Server 2008. For more information,
see the subsection, Affected and Non-Affected Software, in this section.

DETAILS

Affected Software:
*
<http://www.microsoft.com/downloads/details.aspx?familyid=36b14a81-5979-4e38-9ba3-ed83dfc17adf> Windows XP Service Pack 2 - Denial of Service - Important - MS06-052
*
<http://www.microsoft.com/downloads/details.aspx?familyid=36b14a81-5979-4e38-9ba3-ed83dfc17adf> Windows XP Service Pack 3 - Denial of Service - Important - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=9e9d24ee-8183-428c-8067-168a8d85eaa1> Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Denial of Service - Important - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=1e8e2faf-009f-403b-a5fe-a47cf014db3a> Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Denial of Service - Important - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=78bf92d8-63c4-4596-8425-8fcfea7f5582> Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Denial of Service - Important - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=5b7e94fa-22ed-4f7c-b452-647b2e620113> Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems - Denial of Service - Important - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=ef2d2a4b-4831-41be-b5d0-8df5b01fd205> Windows Vista and Windows Vista Service Pack 1 - Denial of Service - Moderate - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=0839fcf4-85ca-445e-896b-f634b10b6700> Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1 - Denial of Service - Moderate - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=0466a6e7-fdca-4647-af62-449e5f20d1e4> Windows Server 2008 for 32-bit Systems* - Denial of Service - Moderate - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=304898e6-21a7-476f-b9ed-7ac0d88a91e2> Windows Server 2008 for x64-based Systems* - Denial of Service - Moderate - None
*
<http://www.microsoft.com/downloads/details.aspx?familyid=8907783b-e3fe-40b2-9fc8-4937e7d58b7e> Windows Server 2008 for Itanium-based Systems - Denial of Service - Moderate - None

*Supported editions of Windows Server 2008 are not affected if installed
using the Server Core installation option. For more information on this
installation option, see Server Core. Note that the Server Core
installation option does not apply to certain editions of Windows Server
2008; see Compare Server Core Installation Options.

Non-Affected Software:
* Windows 2000 Service Pack 4

PGM Invalid Length Vulnerability - CVE-2008-1440
A denial of service vulnerability exists in implementations of the
Pragmatic General Multicast (PGM) protocol on Microsoft Windows XP and
Windows Server 2003. The vulnerability is due to improper validation of
specially crafted PGM packets. An attacker who successfully exploited this
vulnerability could cause the computer to become non-responsive and
require a restart to restore functionality.

CVE Information:
<http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1440>
CVE-2008-1440

PGM Malformed Fragment Vulnerability - CVE-2008-1441
A denial of service vulnerability exists in implementations of the
Pragmatic General Multicast (PGM) protocol on Microsoft Windows XP,
Windows Server 2003, Windows Vista, and Windows Server 2008. The protocol
s parsing code does not properly validate specially crafted PGM fragments
and will cause the affected system to become non-responsive until the
attack has ceased.

CVE Information:
<http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1441>
CVE-2008-1441


ADDITIONAL INFORMATION

The information has been provided by Microsoft Product Security.
The original article can be found at:
<http://www.microsoft.com/technet/security/bulletin/ms08-036.mspx>
http://www.microsoft.com/technet/security/bulletin/ms08-036.mspx



========================================


This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@xxxxxxxxxxxxxx
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@xxxxxxxxxxxxxx


====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Relevant Pages