Musicmatch Jukebox MMFWLaunch.exe gain privileges

jukebox-mmfwlaunch-gain-privileges (20129) The risk level is classified as HighHigh Risk

Description:

Musicmatch Jukebox could allow a local attacker to gain elevated privileges caused improper validation of data in the MMFWLaunch.exe file when the CreateProcess function is called. A local attacker could exploit this vulnerability by specifying an arbitrary file on the target system, which would be executed with the privileges of the target victim.

Note: When installed Musicmatch Jukebox adds *.musicmatch.com to Microsoft Internet Explorer's Trusted Sites zone, which could allow script to be executed with higher privileges.

Platforms Affected:

  • Musicmatch, Musicmatch Jukebox 10.00.2047 and prior
  • Musicmatch, Musicmatch Jukebox 9.00.0159

Remedy:

Update to the latest version of Musicmatch Jukebox (10.00.2058b or later), available from the Musicmatch Jukebox Web site.

Consequences:

Gain Privileges

References:

  • BugTraq Mailing List, Thu Apr 14 2005 - 09:37:37 CDT , Trusted Site Cross Site Scripting Elevation of Privilege in Musicmatch at http://archives.neohapsis.com/archives/bugtraq/2005-04/0211.html.
  • Hyperdose Security Advisory H2005-05, Trojan file issue in Musicmatch software at http://www.hyperdose.com/advisories/H2005-05.txt.
  • Musicmatch Jukebox Web site, Musicmatch Jukebox - World's best music player at http://www.musicmatch.com/home.htm.
  • BID-13173: Musicmatch Jukebox Absolute Path Specification Weakness
  • CVE-2005-1185: Unquoted Windows search path vulnerability in Musicmatch Jukebox 10.00.2047 and earlier allows local users to gain privileges via a malicious C:\program.exe file, which is run by MMFWLaunch.exe when it attempts to execute launch.exe.
  • CVE-2005-1186: Musicmatch Jukebox 10.00.2047 and earlier adds the musicmatch.com domain to the Trusted Sites zone in Internet Explorer, which allows systems in the domain to conduct unauthorized activities, as demonstrated using cross-site scripting (XSS) attacks.
  • SECTRACK ID: 1013718: Musicmatch Jukebox Lets Local Users Gain Elevated Privileges and Remote Users Conduct Cross-Site Scripting Attacks

Reported:

Apr 15, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page