Lucene search

K

[email protected]NVD:CVE-2010-0818

HistorySep 15, 2010 - 7:00 p.m.

CVE-2010-0818

2010-09-1519:00:02

CWE-94

[email protected]

web.nvd.nist.gov

1

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.337

Percentile

97.1%

The MPEG-4 codec in the Windows Media codecs in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 does not properly handle crafted media content with MPEG-4 video encoding, which allows remote attackers to execute arbitrary code via a file in an unspecified “supported format,” aka “MPEG-4 Codec Vulnerability.”

Affected configurations

NVD

Node

microsoftwindows_server_2003sp2

OR

microsoftwindows_server_2008x32

OR

microsoftwindows_server_2008x64

OR

microsoftwindows_server_2008sp2x32

OR

microsoftwindows_server_2008sp2x64

OR

microsoftwindows_vistasp1

OR

microsoftwindows_vistasp2

OR

microsoftwindows_xpsp3

OR

microsoftwindows_xpMatch-sp2x64

References

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-062

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7318

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.337

Percentile

97.1%

Related for NVD:CVE-2010-0818

openvas2 cve1 prion1 cvelist1 securityvulns2 nessus1 checkpoint_advisories1