| "Critical" XPe security fixes now available |
Jun. 19, 2008
Microsoft has released four critical security fixes for the Jet database engine, Bluetooth stack, web browser, and media player in Windows XP Embedded (XPe). Along with two others fixes, rated "moderate" and "important," the patches are available now on the Mobile & Embedded Communications Extranet (ECE), Microsoft says.
In a posting on its Windows Embedded Standard (WES) blog, the company listed the updates as follows:- KB 950749 -- Vulnerability in Microsoft Jet database engine could allow remote code execution
- KB 951376 -- Vulnerability in Bluetooth stack could allow remote code execution
- KB 950759 -- Cumulative security update for Internet Explorer
- KB 951698 -- Vulnerabilities in DirectX could allow remote code execution
- KB 950760 -- Cumulative security update of ActiveX kill bits
- KB 950762 -- Vulnerabilities in pragmatic general multicast (PGM) could allow denial of service
Like a vulnerability fixed by Microsoft last month, KB 950749 apparently involves the Jet database engine, used by XPe to provides data access to applications such as Microsoft Access and Visual Basic. Once again, the vulnerability is rated "critical," since it could allow an attacker to take complete control of a computer. The attack vector would be a Word document containing a specially crafted file using Microsoft's Access .MDB file format, according to the company.
KB 951376, also "critical," involves a vulnerability in XPe's Bluetooth stack. Again, it could allow remote code execution, which permits an attacker to install programs, view, change, or delete data, and create new accounts with full user rights. The fix modifies the way that the Bluetooth stack responds when bombarded with a large number of service description requests, says Microsoft.
A third "critical" vulnerability, denoted as KB 950759, involves the possibility of remote code execution if Internet Explorer is used to view a maliciously crafted web page. The fix modifies the way that the web browser validates data and handles calls to HTML objects, according to Microsoft.
A fourth "critical" vulnerability, KB 951698, involves potential remote code execution via DirectX, in cases where a user opens a specially crafted media file. The fix modifies the way that DirectX handles MJPEG (motion JPEG) and SAMI (synchronized accessible media interchange) files, Microsoft notes.
KB 950760, rated "moderate," concerns the possibility of remote code execution via malicious web pages, in cases where a user has XPe's speech recognition feature enabled. The fix sets "kill bits" in the Windows registry so that related ActiveX controls cannot run within Internet Explorer. It also sets a kill bit disabling a specific version of the third-party BackWeb client, Microsoft says.
Finally, KB 950762, rated "important," concerns vulnerabilities in the PGM (pragmatic general multicast) protocol that could allow a denial of service if malformed PGM packets are received. Although this vulnerability does not allow an attacker to execute code, it could cause a user’s system to become non-responsive and require a restart, according to Microsoft. The fix modifies the way PGM parses malformed packets, the company adds.
XPe is more resistant to attacks than other versions of Windows, thanks to features such as the Enhanced Write Filter, which allows for a device to be returned to its default condition whenever it is restarted. Nonetheless, Microsoft strongly recommends installing the fixes, which are cumulative and include updates for XPe's Desktop QFE Installer (DQI) Tool and Component Database.
For further information on any of the vulnerabilities, click on the links in the list above. To download the updates, access Microsoft's Mobile & Embedded Communications Extranet (ECE), here (a user name and password are required).
The fixes are for XPe with SP2, Feature Pack 2007, and/or Update Rollup 1.0.
Related stories:
(Click here for further information)
|
|
|
|
|
|
|
news feed