296 matches found
CVE-2012-0004
Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media file, related to Quartz.dll...
CVE-2012-0004
CVE-2012-0004 affects Microsoft Windows via the DirectShow/DirectX stack (Quartz.dll, Qdvd.dll, Line21 DirectShow filter) and related components. The vulnerability allows remote attackers to execute arbitrary code by delivering a crafted media file, due to improper handling within DirectShow filt...
Microsoft Windows DirectShow Filters Remote Code Execution (MS12-004; CVE-2012-0004)
A remote code execution vulnerability has been reported in Microsoft Windows...
MS12-004: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2636391)
The version of Windows Media installed on the remote host is affected by one or both of the following vulnerabilities : - The Winmm.dll library as used by Windows Media Player does not properly handle specially crafted MIDI files. CVE-2012-0003 - A DirectShow component of DirectX does not properl...
CVE-2011-0032
Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...
Design/Logic Flaw
Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...
CVE-2011-0032
CVE-2011-0032 is an Untrusted search path vulnerability in DirectShow loading DLLs from the current working directory, allowing local privilege escalation. Affected: Windows Vista SP1/SP2, Windows 7 (Gold/SP1), Windows Server 2008 R2/R2 SP1, and Windows Media Center TV Pack for Vista. Root cause:...
CVE-2011-0032
Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as...
Microsoft Windows Media Remote Code Execution Vulnerabilities (2510030)
This host is missing a critical security update according to Microsoft Bulletin MS11-015. OpenVAS Vulnerability Test $Id: secpodms11-015.nasl 8724 2018-02-08 15:02:56Z cfischer $ Microsoft Windows Media Remote Code Execution Vulnerabilities 2510030 Authors: Sooraj KS Copyright: Copyright c 2011...
PT-2011-2029 · Microsoft · Directshow +5
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista SP1 and SP2 Microsoft Windows 7 Gold and SP1 Microsoft Windows Server 2008 R2 and R2 SP1 Microsoft Windows Media Center TV Pack for Windows Vista Description: The issue allows local users to gain privileges via a Troja...
Microsoft Windows Media Remote Code Execution Vulnerabilities (2510030)
This host is missing a critical security update according to Microsoft Bulletin MS11-015. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Fills Windows, Office Holes with March Patch Release
Microsoft Corp. issued their monthly security bulletins on Tuesday, with fixes for four known vulnerabilities in the company’s Windows operating system, Office suite and Remote Desktop Connection products. The March patch release included three bulletins: MS11-015, 016 and 017. Only one, MS11-015...
Microsoft DirectShow DLL Loading Arbitrary Code Execution Vulnerability
Description Microsoft DirectShow is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link...
MS11-015: Vulnerability in Microsoft DirectShow could allow remote code execution: March 8, 2011
Resolves vulnerabilities in Windows Media Player and Windows Media Center that could allow remote code execution if a user opens a specially crafted Microsoft Digital Video Recording .dvr-ms file.Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security...
Microsoft Media Player ehtrace.dll Insecure Library Loading (MS11-015; CVE-2011-0032)
DirectShow is a DirectX low-level Application Programming Interface API used by Windows programs for multimedia support. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation, and rendering. A remote code execution vulnerability has been reported in...
MS11-015: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2510030)
The remote Windows host has at least one of the following vulnerabilities in Media Player or Media Center : - DirectShow does not adequately restrict the path used for loading external libraries. A remote attacker could exploit this by tricking a user into opening a specially crafted file,...
Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)
This host is missing a critical security update according to Microsoft Bulletin MS07-064. OpenVAS Vulnerability Test $Id: gbms07-064.nasl 5362 2017-02-20 12:46:39Z cfi $ Vulnerabilities in DirectX Could Allow Remote Code Execution 941568 Authors: Madhuri D Copyright: Copyright c 2011 Greenbone...
Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)
This host is missing a critical security update according to Microsoft Bulletin MS07-064. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2010-1882
Multiple buffer overflows in the MPEG Layer-3 Audio Codec for Microsoft DirectShow in l3codecx.ax in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote attackers to execute arbitrary code via an MPEG Layer-3 audio stream in 1 a crafted media file or 2 crafted streaming content, aka...
Buffer overflow
Multiple buffer overflows in the MPEG Layer-3 Audio Codec for Microsoft DirectShow in l3codecx.ax in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote attackers to execute arbitrary code via an MPEG Layer-3 audio stream in 1 a crafted media file or 2 crafted streaming content, aka...