Microsoft Security Advisory 972890 Released
From MSRC Team Blog:
I wanted to let you know that we have just posted Microsoft Security Advisory 972890 that discusses new, limited attacks against a Microsoft Video ActiveX Control affecting Windows XP and Windows Server 2003.
Specifically, we’re aware of a code execution vulnerability within this control that can enable an attacker to run code as the logged-on user if they browse to a malicious site.
We have an investigation into this issue under way as part of our Software Security Incident Response Process (SSIRP) and are working to develop a security update to address the issue.
In the meantime, our investigation has shown that there are no by-design uses for this ActiveX Control within Internet Explorer. Therefore, we’re recommending that all customers go ahead and implement the workaround outlined in the Security Advisory: setting all killbits associated with this particular control. While Windows Vista and Windows Server 2008 customers are not affected by this vulnerability, we are recommending that they also set these killbits as a defense-in-depth measure. Once that killbit is set, any attempt by malicious websites to exploit the vulnerability would not succeed.
http://blogs.technet.com/msrc/archive/2009/07/06/microsoft-security-advisory-972890-released.aspx
Note: The advisory page http://www.microsoft.com/technet/security/advisory/972890.mspx is not available at the time of this writing/blogging. Please visit the said URL again afterwards. Edit: Advisory page is now live.
The work-around is to set a killbit for CLSID {0955AC62-BF2E-4CBA-A2B9-A63F772D46CF}
http://msmvps.com/blogs/donna/archive/2009/07/06/microsoft-windows-msvidctl-remote-buffer-overflow-vulnerability-0day.aspx
Let Microsoft FixIt for you: http://support.microsoft.com/kb/972890#FixItForMe