Microsoft Windows Cinepak Codec Remote Code Execution (MS10-055; CVE-2010-2553)

The Cinepak codec is a media encoder and decoder supported by the Windows Media Player. A remote code execution vulnerability has been reported in the way the Cinepak codec handles supported format files. The vulnerability is due to an error in the Cinepak codec that fails to properly handle...

Microsoft Cinepak Codec CVDecompress Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the iccvid.dll...

PT-2010-4101 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists in the way the Cinepak codec handles supported format files. This could allow code execution if a user opened a specially crafted media...

ffdshow Video Codec Denial of Service

Exploit for windows platform in category dos / poc ===================================== ffdshow Video Codec Denial of Service ===================================== !/usr/bin/perl Exploit Title: Malformed MP4 Local DoS for ffdshow Video Codec tryouts rev. 3467 20100713 x86 Date: 08/08/2010 Author...

ffdshow Video Codec - Denial of Service

ffdshow Video Codec - Denial of Service !/usr/bin/perl Exploit Title: Malformed MP4 Local DoS for ffdshow Video Codec tryouts rev. 3467 20100713 x86 Date: 08/08/2010 Author: Nishant Das Patnaik Web: http://nishantdaspatnaik.yolasite.com Software Link:...

ffdshow Video Codec - Denial of Service

!/usr/bin/perl Exploit Title: Malformed MP4 Local DoS for ffdshow Video Codec tryouts rev. 3467 20100713 x86 Date: 08/08/2010 Author: Nishant Das Patnaik Web: http://nishantdaspatnaik.yolasite.com Software Link: ftp://majorgeeks.mirror.internode.on.net/multimedia/K-LiteCodecPack620Mega.exe Versio...

DEBIAN-CVE-2010-2630

The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service application crash via a crafted file, a different vulnerability than...

CVE-2010-2630

Affected software: LibTIFF 3.9.0. Vulnerability: TIFFReadDirectory fails to properly validate the data types of codec-specific TIFF tags with an out-of-order position in a TIFF file. Impact: remote denial of service (application crash) via a crafted TIFF image. Root cause: insufficient validation...

Mandriva Update for kernel MDVSA-2010:088 (kernel)

Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2010:088 kernel Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

ZDI-10-070: Microsoft Windows Media Player Codec Retrieval Dangling Pointer Remote Code Execution Vulnerability

ZDI-10-070: Microsoft Windows Media Player Codec Retrieval Dangling Pointer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-070 April 13, 2010 -- CVE ID: CVE-2010-0268 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Windows Media Player 9 --...

Microsoft Windows MP3 codec buffer overflow

Buffer overflow on AVI files with MP3 audio stream...

Microsoft MPEG Layer-3 Audio Decoder Stack Overflow (MS10-026; CVE-2010-0480)

MPEG Layer-3 audio codecs are the MPEG Layer-3 Audio Codec for Microsoft DirectShow l3codecx.ax and the Fraunhofer IIS MPEG Layer-3 ACM codecs L3codeca.acm and L3codecp.acm. These MPEG Layer-3 audio codecs are provided along with Windows Media files on affected versions of Microsoft Windows. A...

Microsoft Windows Media Player Codec Retrieval Dangling Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows Media Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page. The specific flaw exists within the functionality for...

iDefense Security Advisory 04.09.10: VMware VMnc Codec Heap Overflow Vulnerability

iDefense Security Advisory 04.09.10 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 09, 2010 I. BACKGROUND VMware Inc. markets several virtualization products such as ACE, Player, Server, and Workstation. These products include a video coder-decoder codec called 'vmnc.dll', or VMware...

Microsoft Windows Media Player ActiveX Codec Retrieval (CVE-2010-0268)

Microsoft Windows Media Player is a feature of the Windows operating system for personal computers. It is used for playing audio and video. A remote code execution vulnerability has been reported in the Windows Media Player's ActiveX control. The vulnerability is due to an error in the Windows...

MS10-026: Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (977816)

The Microsoft MPEG Layer-3 MP3 codecs have a buffer overflow vulnerability that is triggered by opening a specially crafted AVI file with an MP3 audio stream. A remote attacker could exploit this by tricking a user into opening a malicious AVI file, which would lead to arbitrary code execution. C...

CVE-2009-1564

Heap-based buffer overflow in vmnc.dll in the VMnc media codec in VMware Movie Decoder before 6.5.4 Build 246459 on Windows, and the movie decoder in VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Windows, allows remote...

VMware VMnc编解码器HexTile编码视频块多个堆溢出漏洞

BUGTRAQ ID: 39364 CVE ID: CVE-2009-1565 VMWare是一款虚拟PC软件，允许在一台机器上同时运行两个或多个Windows、DOS、LINUX系统。 VMWare媒体解码器包含有用于播放VMware Workstation、VMware Player和VMware ACE所记录电影的VMnc媒体编解码器。vmnc.dll库在处理HexTile编码的视频块时存在两个整数截尾错误，用户受骗打开了畸形的AVI媒体文件就可以触发堆溢出，导致执行任意代码。 VMWare Workstation 6.5.x VMWare Player 2.5.x VMWare...

ZDI-10-036: Apple QuickTime H.263 PictureHeader Remote Code Execution Vulnerability

ZDI-10-036: Apple QuickTime H.263 PictureHeader Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-036 April 2, 2010 -- CVE ID: CVE-2010-0062 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection: TippingPoin...

ZDI-10-041: Apple QuickTime QDM2/QDCA Atom Remote Code Execution Vulnerability

ZDI-10-041: Apple QuickTime QDM2/QDCA Atom Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-041 April 2, 2010 -- CVE ID: CVE-2010-0059 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...