1284 matches found
Vulnerability fixed in Windows
Microsoft has fixed a vulnerability in the Windows Codecs Library. Users who had installed the HEVC codec from the Microsoft Store had installed it were vulnerable to the execution of arbitrary code by a remote malicious person. The malicious party to do this must induce the victim to play a rogu...
CVE-2020-17022
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted ima...
CVE-2020-17022
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted ima...
Remote code execution
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted ima...
CVE-2020-17022 Microsoft Windows Codecs Library Remote Code Execution Vulnerability
...
CVE-2020-17022
CVE-2020-17022 is a remote code execution vulnerability in Microsoft Windows Codecs Library that allows arbitrary code execution when a program processes a specially crafted image file. Multiple connected sources (MSRC/MS hardening guidance, Nessus plug-in, CNVD, NCSC) describe the issue as affec...
Microsoft Fixes RCE Flaws in Out-of-Band Windows Update
Microsoft has issued out-of-band patches for two “important” severity vulnerabilities, which if exploited could allow for remote code execution. One flaw CVE-2020-17023 exists in Microsoft’s Visual Studio Code is a free source-code editor made by Microsoft for Windows, Linux and macOS. The other...
Microsoft Releases Security Updates to Address Remote Code Execution Vulnerabilities
Microsoft has released security updates to address remote code execution vulnerabilities affecting Windows Codecs Library and Visual Studio Code. An attacker could exploit these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA...
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted ima...
netty: compression/decompression codecs don't enforce limits on buffer allocation sizes
A flaw was found in Netty in the way it handles the amount of data it compresses and decompresses. The Compression/Decompression codecs should enforce memory allocation size limits to avoid an Out of Memory Error OOME or exhaustion of the memory pool...
Microsoft Windows Multiple Vulnerabilities (KB4579311)
This host is missing a critical security update according to Microsoft KB4579311 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4577668)
This host is missing a critical security update according to Microsoft KB4577668 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4577671)
This host is missing a critical security update according to Microsoft KB4577671 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2020-4369 · Microsoft · Windows Codecs Library
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Codecs Library affected versions not specified Description: A remote code execution issue exists in the way Microsoft Windows Codecs Library handles objects in memory. This could allow an attacker to execute arbitrary code i...
The vulnerability of the Microsoft Windows Codecs Library, which is used for processing media content on Windows operating systems, allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Windows Codecs Library for processing media content relates to access to an uninitialized pointer. Exploiting this vulnerability could allow a attacker to execute arbitrary code through a specially created application...
The vulnerability of the Microsoft Windows Codecs Library, which is used for processing media content on Windows operating systems, allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Windows Codecs Library, used for processing media content, in Windows operating systems is related to errors in object handling in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system using a specially...
netty: compression/decompression codecs don't enforce limits on buffer allocation sizes
A flaw was found in Netty in the way it handles the amount of data it compresses and decompresses. The Compression/Decompression codecs should enforce memory allocation size limits to avoid an Out of Memory Error OOME or exhaustion of the memory pool...
Microsoft Windows Codecs Library AV1 RCE (August 2020)
The Windows 'AV1 Video Extension' or 'AV1 from Device Manufacturer' app installed on the remote host is affected by two code execution vulnerabilities. An unauthenticated, remote attacker can exploit either of these vulnerabilities via a image file to execute code and gain control of the system. ...
CVE-2020-1319
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or...
CVE-2020-1319
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or...