Microsoft Windows/Windows Server Remote Code Execution Vulnerability (CNVD-2021-65599)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A remote code execution vulnerability exists in Microsoft Windows/Windows Server, which...

Windows Media Audio Decoder Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Windows Media Audio Decoder improperly handles objects. An attacker who successfully exploited the vulnerability could take control of an affected system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a...

Windows Media Audio Decoder Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Windows Media Audio Decoder improperly handles objects. An attacker who successfully exploited the vulnerability could take control of an affected system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a...

PT-2020-4150 · Microsoft · Windows Media Audio Decoder +1

Name of the Vulnerable Software and Affected Versions: Windows Media Audio Decoder affected versions not specified Description: A remote code execution issue exists due to improper handling of objects by Windows Media Audio Decoder, allowing an attacker to potentially take control of an affected...

KB4577048: Windows Server 2012 September 2020 Security Update

The remote Windows host is missing security update 4577048 or cumulative update 4577038. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...

KB4577053: Windows 7 and Windows Server 2008 R2 September 2020 Security Update

The remote Windows host is missing security update 4577053 or cumulative update 4577051. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...

KLA11952 Multiple vulnerabilities in Microsoft ESU products

Multiple vulnerabilities were found in Microsoft ESU products. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerabili...

KB4577041: Windows 10 Version 1709 September 2020 Security Update

The remote Windows host is missing security update 4577041. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary co...

KB4577070: Windows Server 2008 September 2020 Security Update

The remote Windows host is missing security update 4577070 or cumulative update 4577064. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...

PT-2020-4157 · Microsoft · Windows Media Audio Decoder +1

Name of the Vulnerable Software and Affected Versions: Windows Media Audio Decoder affected versions not specified Description: A remote code execution issue exists due to improper handling of objects by Windows Media Audio Decoder, allowing an attacker to potentially take control of an affected...

KB4577049: Windows 10 September 2020 Security Update

The remote Windows host is missing security update 4577049. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary co...

Nintendo: [3DS][SSL] Use of uninitialized class member leads to RCE in eShop movie player

Affected Systems - Platform : New Nintendo 3DS - Region: ALL - System version: 11.13 latest at the time of writing Description The eShop video player does not initialize pointers to some decoder objects when creating a video player object. With a specific audio codec this induces the use of...

Denial Of Service (DoS)

faad2 is vulnerable to denial of service DoS. The vulnerability exists as an invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash,...

Denial Of Service (DoS)

faad2 is vulnerable to denial of service DoS. It is a stack-based buffer underflow in the third instance of the calculategain function in libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2. A crafted input will lead to a denial of service or possibly unspecified other impact because...

Low: GStreamer, libmad, and SDL security, bug fix, and enhancement update

The GStreamer library provides a streaming media framework based on graphs of media data filters. The libmad package is an MPEG audio decoder capable of 24-bit output. Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer...

GStreamer, libmad, and SDL security, bug fix, and enhancement update

An update is available for libmad, gstreamer1-plugins-ugly-free, gstreamer1-plugins-bad-free, SDL2, orc, gstreamer1. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

openSUSE Security Update : opera (openSUSE-2020-402)

This update for opera fixes the following issues : Update to version 67.0.3575.97 - DNA-84063 Open URL in new tab with Go to web address in search/copy popup and right mouse click context menu - DNA-84780 Search in Search and Copy popup opens tab in wrong position from popup window - DNA-84786...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

DEBIAN-CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...