=====================================================================
                                  CERT-Renater

                       Note d'Information No. 2005/VULN069
_____________________________________________________________________

DATE                      : 09/02/2005

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       :  Windows 98, Windows Me and systems running
                               Windows Media Player 9 Series, MSN Messenger 6.1,
                                MSN Messenger 6.2.

======================================================================

MS05-009
Title:  Vulnerability in PNG Processing Could Allow Remote Code
Execution (890261)

Affected Software:
  - Microsoft Windows Media Player 9 Series (when running on Windows
2000, Windows XP and Windows Server 2003)
  - Microsoft MSN Messenger 6.1
  - Microsoft MSN Messenger 6.2
  - Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE),
and Microsoft Windows Millennium Edition (ME) - Review the FAQ
section of this bulletin for details about these operating systems.

Non-Affected Software:
  - MSN Messenger for Mac
  - Windows Media Player 6.4
  - Windows Media Player 7.1
  - Windows Media Player for Windows XP (8.0)
  - Windows Media Player 9 Series for Windows XP Service Pack 2
  - Windows Media Player 10

Affected Components:
  - Microsoft Windows Messenger version 4.7.2009 (when running on
Windows XP and Windows XP Service Pack 1)
  - Microsoft Windows Messenger version 4.7.3000 (when running on
Windows XP Service Pack 2)
  - Microsoft Windows Messenger version 5.0 (standalone version that
can be installed on all supported operating systems)

Impact of Vulnerability: Remote Code Execution

Maximum Severity Rating: Critical

Restart required: In some cases, this update does not require a
restart. The installer stops the required services, applies the
update, and then restarts the services. However, if the required
services cannot be stopped for any reason, or if required files are
in use, this update will require a restart. If this occurs, a message
appears that advises you to restart.

Update can be uninstalled: Yes

More information on this vulnerability is available at:
http://www.microsoft.com/technet/security/bulletin/MS05-009.mspx

======================================================================

         =========================================================
         Les serveurs de référence du CERT-Renater
         http://www.urec.fr/securite
         http://www.cru.fr/securite
         http://www.renater.fr
         =========================================================
         + CERT-RENATER          | tel : 01-53-94-20-44          +
         + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
         + 75013 Paris           | email: certsvp@renater.fr     +
         =========================================================