295 matches found
Microsoft DirectShow 远程代码执行漏洞(CVE-2013-3174)
BUGTRAQ ID: 60979 CVECAN ID: CVE-2013-3174 DirectShow是微软公司在ActiveMovie和Video for Windows的基础上推出的新一代基于COMComponent Object Model的流媒体处理开发包,与DirectX开发包一起发布。 Microsoft DirectShow 分析 GIF 图像文件的方式中存在一个远程执行代码漏洞。如果用户打开特制 GIF...
Microsoft DirectShow Remote Code Execution Vulnerability (2845187)
This host is missing a critical security update according to Microsoft Bulletin MS13-056. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft DirectShow CVE-2013-3174 Remote Code Execution Vulnerability
Description Microsoft DirectShow is prone to a remote code-execution vulnerability. Successful exploits allow remote attackers to execute arbitrary code in the context of the user running an application that uses DirectShow. Failed exploit attempts will result in a denial-of-service condition...
PT-2013-4200 · Microsoft · Windows 7 +8
Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP SP2 and SP3 Microsoft Windows Server 2003 SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows 8 Microsoft Windows Server 2012 Description: A remote code...
CVE-2013-0077
Quartz.dll in DirectShow in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote attackers to execute arbitrary code via crafted media content in 1 a media file, 2 a media stream, or 3 a Microsoft Office document, aka "Media Decompression Vulnerability."...
Design/Logic Flaw
Quartz.dll in DirectShow in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote attackers to execute arbitrary code via crafted media content in 1 a media file, 2 a media stream, or 3 a Microsoft Office document, aka "Media Decompression Vulnerability."...
CVE-2013-0077
Quartz.dll in DirectShow in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote attackers to execute arbitrary code via crafted media content in 1 a media file, 2 a media stream, or 3 a Microsoft Office document, aka "Media Decompression Vulnerability."...
Microsoft Windows Media Decompression Remote Code Execution Vulnerability (2780091)
This host is missing a critical security update according to Microsoft Bulletin MS13-011. OpenVAS Vulnerability Test $Id: secpodms13-011.nasl 5346 2017-02-19 08:43:11Z cfi $ Microsoft Windows Media Decompression Remote Code Execution Vulnerability 2780091 Authors: Antu Sanadi Copyright: Copyright...
PT-2013-2081 · Microsoft · Windows Server 2003 +5
Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP SP2 and SP3 Microsoft Windows Server 2003 SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 Description: The issue allows remote attackers to execute arbitrary code via crafted media content in a media fil...
Microsoft Patches Critical IE Vulnerabilities
Internet Explorer continues to dominate Microsoft’s 2013 security updates. Among the 12 bulletins and 57 vulnerabilities patched in today’s release was a cumulative update for the maligned browser and another fix for a bug being exploited in the wild. Last month, an out-of-band fix for IE 6-8...
Microsoft DirectShow CVE-2013-0077 Remote Code Execution Vulnerability
Description Microsoft DirectShow is prone to a remote code-execution vulnerability. Successful exploits allow remote attackers to execute arbitrary code in the context of the user running an application that uses DirectShow. Failed exploit attempts will result in a denial-of-service condition...
VulnCheck KEV: CVE-2009-0084
Use-after-free vulnerability in DirectShow in Microsoft DirectX 8.1 and 9.0 allows remote attackers to execute arbitrary code via an MJPEG file or video stream with a malformed Huffman table, which triggers an exception that frees heap memory that is later accessed, aka "MJPEG Decompression...
Windows Media MIDI Invalid Channel
Added: 02/06/2012 CVE: CVE-2012-0003 BID: 51292 OSVDB: 78210 Background Musical Instrument Digital Interface MIDI is an industry specification for encoding, storing, synchronizing, and transmitting the musical performance and control data of electronic musical instruments and other electronic...
Windows Media MIDI Invalid Channel
Added: 02/06/2012 CVE: CVE-2012-0003 BID: 51292 OSVDB: 78210 Background Musical Instrument Digital Interface MIDI is an industry specification for encoding, storing, synchronizing, and transmitting the musical performance and control data of electronic musical instruments and other electronic...
Windows Media MIDI Invalid Channel
Added: 02/06/2012 CVE: CVE-2012-0003 BID: 51292 OSVDB: 78210 Background Musical Instrument Digital Interface MIDI is an industry specification for encoding, storing, synchronizing, and transmitting the musical performance and control data of electronic musical instruments and other electronic...
Microsoft Windows multiple security vulnerabilities
SafeSEH protection bypass, Windows Object Packager code execution, CSRSS privilege escalation, DirectShow / Windows Media memory corruption, Windows Packager code execution, SSL/TLS information leakage...
Microsoft Windows Media Could Allow Remote Code Execution Vulnerabilities (2636391)
This host is missing a critical security update according to Microsoft Bulletin MS12-004. OpenVAS Vulnerability Test $Id: secpodms12-004.nasl 5341 2017-02-18 16:59:12Z cfi $ Microsoft Windows Media Could Allow Remote Code Execution Vulnerabilities 2636391 Authors: Sooraj KS Copyright: Copyright c...
Microsoft Windows Media Could Allow Remote Code Execution Vulnerabilities (2636391)
This host is missing a critical security update according to Microsoft Bulletin MS12-004. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2012-0004
Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media file, related to Quartz.dll...
Remote code execution
Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media file, related to Quartz.dll...