Microsoft Windows Codecs Library RCE (October 2020)

The Windows 'HEVC Video Extensions' or 'HEVC from Device Manufacturer' app installed on the remote host is affected by a remote code execution vulnerability : - A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who...

Microsoft Windows Codecs Library Multiple Vulnerabilities (June 2020)

The Windows 'HEVC Video Extensions' or 'HEVC from Device Manufacturer' app installed on the remote host is affected by two code execution vulnerabilities. An authenticated, local attacker can exploit either of these vulnerabilities to bypass additional authentication and execute arbitrary command...