Lucene search
K

296 matches found

Cvelist
Cvelist
added 2012/01/10 9:0 p.m.27 views

CVE-2012-0004

Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media file, related to Quartz.dll...

7.8AI score0.22547EPSS
Exploits0References6
CVE
CVE
added 2012/01/10 9:0 p.m.165 views

CVE-2012-0004

CVE-2012-0004 affects Microsoft Windows via the DirectShow/DirectX stack (Quartz.dll, Qdvd.dll, Line21 DirectShow filter) and related components. The vulnerability allows remote attackers to execute arbitrary code by delivering a crafted media file, due to improper handling within DirectShow filt...

9.3CVSS8AI score0.22547EPSS
Exploits0References6Affected Software5
Check Point Advisories
Check Point Advisories
added 2012/01/10 12:0 a.m.14 views

Microsoft Windows DirectShow Filters Remote Code Execution (MS12-004; CVE-2012-0004)

A remote code execution vulnerability has been reported in Microsoft Windows...

7.3AI score0.22547EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/01/10 12:0 a.m.55 views

MS12-004: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2636391)

The version of Windows Media installed on the remote host is affected by one or both of the following vulnerabilities : - The Winmm.dll library as used by Windows Media Player does not properly handle specially crafted MIDI files. CVE-2012-0003 - A DirectShow component of DirectX does not properl...

9.3CVSS8AI score0.69499EPSS
Exploits12References3
NVD
NVD
added 2011/03/09 11:0 p.m.25 views

CVE-2011-0032

Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

9.3CVSS6.4AI score0.10391EPSS
Exploits0References8
Prion
Prion
added 2011/03/09 11:0 p.m.19 views

Design/Logic Flaw

Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

9.3CVSS6.8AI score0.10391EPSS
Exploits0References8Affected Software2
CVE
CVE
added 2011/03/09 10:0 p.m.69 views

CVE-2011-0032

CVE-2011-0032 is an Untrusted search path vulnerability in DirectShow loading DLLs from the current working directory, allowing local privilege escalation. Affected: Windows Vista SP1/SP2, Windows 7 (Gold/SP1), Windows Server 2008 R2/R2 SP1, and Windows Media Center TV Pack for Vista. Root cause:...

9.3CVSS6.5AI score0.10391EPSS
Exploits0References8Affected Software3
Cvelist
Cvelist
added 2011/03/09 10:0 p.m.27 views

CVE-2011-0032

Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...

6.3AI score0.10391EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.32 views

Microsoft Windows Media Remote Code Execution Vulnerabilities (2510030)

This host is missing a critical security update according to Microsoft Bulletin MS11-015. OpenVAS Vulnerability Test $Id: secpodms11-015.nasl 8724 2018-02-08 15:02:56Z cfischer $ Microsoft Windows Media Remote Code Execution Vulnerabilities 2510030 Authors: Sooraj KS Copyright: Copyright c 2011...

9.3CVSS0.5AI score0.33276EPSS
Exploits4References3
Positive Technologies
Positive Technologies
added 2011/03/09 12:0 a.m.5 views

PT-2011-2029 · Microsoft · Directshow +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista SP1 and SP2 Microsoft Windows 7 Gold and SP1 Microsoft Windows Server 2008 R2 and R2 SP1 Microsoft Windows Media Center TV Pack for Windows Vista Description: The issue allows local users to gain privileges via a Troja...

9.3CVSS7.2AI score0.10391EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.23 views

Microsoft Windows Media Remote Code Execution Vulnerabilities (2510030)

This host is missing a critical security update according to Microsoft Bulletin MS11-015. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.33276EPSS
Exploits4References5
ThreatPost
ThreatPost
added 2011/03/08 9:23 p.m.92 views

Microsoft Fills Windows, Office Holes with March Patch Release

Microsoft Corp. issued their monthly security bulletins on Tuesday, with fixes for four known vulnerabilities in the company’s Windows operating system, Office suite and Remote Desktop Connection products. The March patch release included three bulletins: MS11-015, 016 and 017. Only one, MS11-015...

9.3CVSS0.6AI score0.99945EPSS
Exploits33References7
Symantec
Symantec
added 2011/03/08 12:0 a.m.17 views

Microsoft DirectShow DLL Loading Arbitrary Code Execution Vulnerability

Description Microsoft DirectShow is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link...

0.2AI score
Exploits0References4Affected Software8
Microsoft KB
Microsoft KB
added 2011/03/08 12:0 a.m.38 views

MS11-015: Vulnerability in Microsoft DirectShow could allow remote code execution: March 8, 2011

Resolves vulnerabilities in Windows Media Player and Windows Media Center that could allow remote code execution if a user opens a specially crafted Microsoft Digital Video Recording .dvr-ms file.Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security...

9.3CVSS6.8AI score0.33276EPSS
Exploits4
Check Point Advisories
Check Point Advisories
added 2011/03/08 12:0 a.m.7 views

Microsoft Media Player ehtrace.dll Insecure Library Loading (MS11-015; CVE-2011-0032)

DirectShow is a DirectX low-level Application Programming Interface API used by Windows programs for multimedia support. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation, and rendering. A remote code execution vulnerability has been reported in...

9.3CVSS7.2AI score0.10391EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/03/08 12:0 a.m.72 views

MS11-015: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2510030)

The remote Windows host has at least one of the following vulnerabilities in Media Player or Media Center : - DirectShow does not adequately restrict the path used for loading external libraries. A remote attacker could exploit this by tricking a user into opening a specially crafted file,...

9.3CVSS6.4AI score0.33276EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.30 views

Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)

This host is missing a critical security update according to Microsoft Bulletin MS07-064. OpenVAS Vulnerability Test $Id: gbms07-064.nasl 5362 2017-02-20 12:46:39Z cfi $ Vulnerabilities in DirectX Could Allow Remote Code Execution 941568 Authors: Madhuri D Copyright: Copyright c 2011 Greenbone...

9.3CVSS0.3AI score0.45873EPSS
Exploits13References5
OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.15 views

Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)

This host is missing a critical security update according to Microsoft Bulletin MS07-064. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5.1AI score
Exploits0References7
NVD
NVD
added 2010/08/11 6:47 p.m.45 views

CVE-2010-1882

Multiple buffer overflows in the MPEG Layer-3 Audio Codec for Microsoft DirectShow in l3codecx.ax in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote attackers to execute arbitrary code via an MPEG Layer-3 audio stream in 1 a crafted media file or 2 crafted streaming content, aka...

9.3CVSS7.6AI score0.23415EPSS
Exploits0References3
Prion
Prion
added 2010/08/11 6:47 p.m.23 views

Buffer overflow

Multiple buffer overflows in the MPEG Layer-3 Audio Codec for Microsoft DirectShow in l3codecx.ax in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote attackers to execute arbitrary code via an MPEG Layer-3 audio stream in 1 a crafted media file or 2 crafted streaming content, aka...

9.3CVSS8.2AI score0.23415EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder