Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-1669

Malware in sbrugna...

6.8CVSS7.9AI score0.04052EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.3 views

SUSE CVE-2014-1593

Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...

6.8CVSS9.5AI score0.04052EPSS
Exploits0References7
Microsoft KB
Microsoft KB
added 2017/01/07 12:0 a.m.35 views

MS16-027: Description of the security update for Windows media: March 8, 2016

MS16-027: Description of the security update for Windows media: March 8, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if a user opens specially crafted media content that is hosted on a website. To learn mor...

7.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/03/23 12:0 a.m.10 views

Vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of the Windows operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially crafted media content, from a remote location...

9.3CVSS8.1AI score0.20145EPSS
Exploits0References2
CNVD
CNVD
added 2016/03/10 12:0 a.m.4 views

Microsoft Windows Media Analytics Remote Code Execution Vulnerability (CNVD-2016-01578)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A remote code execution vulnerability exists in Microsoft Windows. A remote attacker could exploit this vulnerability to execute code and compromise a vulnerable system by tricking a user into opening...

9.3CVSS8.1AI score0.20145EPSS
Exploits0References1
OSV
OSV
added 2016/03/09 11:59 a.m.2 views

CVE-2016-0098

Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 allow remote attackers to execute arbitrary code via crafted media content, aka "Windows Media Parsing Remote Code Execution Vulnerability."...

8.8CVSS7.7AI score0.20145EPSS
Exploits0References3
Prion
Prion
added 2016/03/09 11:59 a.m.21 views

Remote code execution

Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 allow remote attackers to execute arbitrary code via crafted media content, aka "Windows Media Parsing Remote Code Execution Vulnerability."...

9.3CVSS8.7AI score0.20145EPSS
Exploits0References3Affected Software3
Check Point Advisories
Check Point Advisories
added 2016/03/08 12:0 a.m.17 views

Microsoft Windows Media Parsing Remote Code Execution (MS16-027: CVE-2016-0101)

A code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly handles resources in the media library. A remote attacker can exploit this issue by enticing a victim to open specially crafted media content...

9.3CVSS8.5AI score0.20145EPSS
Exploits0
Cvelist
Cvelist
added 2014/12/11 11:0 a.m.20 views

CVE-2014-1593

Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...

5.3AI score0.04052EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2014/12/02 11:42 p.m.5 views

Mozilla: Buffer overflow while parsing media content (MFSA 2014-88)

Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...

6.8CVSS7.5AI score0.04052EPSS
Exploits0References5
CVE
CVE
added 2013/02/13 11:0 a.m.156 views

CVE-2013-0077

The CVE-2013-0077 issue concerns Quartz.dll in DirectShow on Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2). A remote attacker can trigger arbitrary code execution by processing crafted media content (media file, media stream, or an Office document). The vulnerability...

9.3CVSS7.5AI score0.24242EPSS
Exploits0References3Affected Software4
Prion
Prion
added 2010/10/13 7:0 p.m.14 views

Memory corruption

Microsoft Windows Media Player WMP 9 through 12 does not properly deallocate objects during a browser reload action, which allows user-assisted remote attackers to execute arbitrary code via crafted media content referenced in an HTML document, aka "Windows Media Player Memory Corruption...

9.3CVSS7.9AI score0.24248EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/10/13 6:0 p.m.24 views

CVE-2010-2745

Microsoft Windows Media Player WMP 9 through 12 does not properly deallocate objects during a browser reload action, which allows user-assisted remote attackers to execute arbitrary code via crafted media content referenced in an HTML document, aka "Windows Media Player Memory Corruption...

7.2AI score0.24248EPSS
Exploits1References4
CVE
CVE
added 2010/10/13 6:0 p.m.64 views

CVE-2010-2745

CVE-2010-2745 is a Windows Media Player memory corruption vulnerability affecting WMP 9–12. It arises when Windows Media Player fails to deallocate objects during a browser reload, allowing a remote attacker to execute arbitrary code by convincing a user to visit a crafted web page. Exploitation ...

9.3CVSS7.4AI score0.24248EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2010/04/14 4:0 p.m.19 views

Remote code execution

Unspecified vulnerability in the Windows Media Player ActiveX control in Windows Media Player WMP 9 on Microsoft Windows 2000 SP4 and XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted media content, aka "Media Player Remote Code Execution Vulnerability."...

9.3CVSS8.6AI score0.20122EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/12/13 1:30 a.m.23 views

Memory corruption

The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via crafted media content...

9.3CVSS8AI score0.16507EPSS
Exploits0References14Affected Software1
Prion
Prion
added 2009/12/13 1:30 a.m.15 views

Code injection

Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted media content, as reported to Microsoft by Dave Lenoe of Adobe...

9.3CVSS8.1AI score0.20731EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2009/12/13 1:30 a.m.29 views

CVE-2009-4210

The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via crafted media content...

9.3CVSS7.3AI score0.16507EPSS
Exploits0References14
Prion
Prion
added 2009/12/13 1:30 a.m.20 views

Design/Logic Flaw

Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted media content, as reported to Microsoft by Paul Byrne of NGS Software. NOTE: this might overlap CVE-2008-3615...

9.3CVSS7.7AI score0.21947EPSS
Exploits1References10Affected Software1
NVD
NVD
added 2009/12/13 1:30 a.m.30 views

CVE-2009-4311

Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted media content, as reported to Microsoft by Paul Byrne of NGS Software. NOTE: this might overlap CVE-2008-3615...

9.3CVSS7.3AI score0.21947EPSS
Exploits0References10
Rows per page
Query Builder