Reported March 9, 2004, by Microsoft.

 

 

 

VERSIONS AFFECTED

 

·         Microsoft Windows Media Services 4.1 (included with Windows 2000 Server)

 

 

DESCRIPTION

 

A Denial of Service (DoS) vulnerability exists in Microsoft Windows Media Services 4.1. This vulnerability occurs because of the way that Windows Media Station Service and Windows Media Monitor Service, components of Windows Media Services, handle TCP/IP connections. If a remote user sends a specially crafted sequence of TCP/IP packets to the listening port of either service, the service could stop responding to requests additional connections. You must restart the service to regain its functionality.

 

VENDOR RESPONSE

 

Microsoft has released security bulletin MS04-008, "Vulnerability in Windows Media Services Could Allow a Denial of Service (832359)," to address the vulnerability and recommends that affected users apply the appropriate patch listed in the bulletin.

 

CREDIT

 

Discovered by Qualsys.