9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.895 High
EPSS
Percentile
98.7%
Added: 08/27/2010
CVE: CVE-2010-2564
BID: 42268
OSVDB: 66986
Windows Movie Maker is software for creating and editing home movies.
A buffer overflow vulnerability when parsing MediaClipString
data allows command execution when a user opens a specially crafted .MSWMM
file.
Apply the update referenced in Microsoft Security Bulletin 10-050.
<http://secunia.com/advisories/38931/>
Exploit works on Microsoft Windows Movie Maker 2.1 and requires the user to open the exploit file.
Windows