20 matches found
EUVD-2014-1669
Malware in sbrugna...
SUSE CVE-2014-1593
Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...
MS16-027: Description of the security update for Windows media: March 8, 2016
MS16-027: Description of the security update for Windows media: March 8, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if a user opens specially crafted media content that is hosted on a website. To learn mor...
Vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code
The vulnerability of the Windows operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially crafted media content, from a remote location...
Microsoft Windows Media Analytics Remote Code Execution Vulnerability (CNVD-2016-01578)
Microsoft Windows is a series of operating systems released by the American company Microsoft. A remote code execution vulnerability exists in Microsoft Windows. A remote attacker could exploit this vulnerability to execute code and compromise a vulnerable system by tricking a user into opening...
CVE-2016-0098
Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 allow remote attackers to execute arbitrary code via crafted media content, aka "Windows Media Parsing Remote Code Execution Vulnerability."...
Remote code execution
Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 allow remote attackers to execute arbitrary code via crafted media content, aka "Windows Media Parsing Remote Code Execution Vulnerability."...
Microsoft Windows Media Parsing Remote Code Execution (MS16-027: CVE-2016-0101)
A code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly handles resources in the media library. A remote attacker can exploit this issue by enticing a victim to open specially crafted media content...
CVE-2014-1593
Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...
Mozilla: Buffer overflow while parsing media content (MFSA 2014-88)
Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...
CVE-2013-0077
The CVE-2013-0077 issue concerns Quartz.dll in DirectShow on Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2). A remote attacker can trigger arbitrary code execution by processing crafted media content (media file, media stream, or an Office document). The vulnerability...
Memory corruption
Microsoft Windows Media Player WMP 9 through 12 does not properly deallocate objects during a browser reload action, which allows user-assisted remote attackers to execute arbitrary code via crafted media content referenced in an HTML document, aka "Windows Media Player Memory Corruption...
CVE-2010-2745
Microsoft Windows Media Player WMP 9 through 12 does not properly deallocate objects during a browser reload action, which allows user-assisted remote attackers to execute arbitrary code via crafted media content referenced in an HTML document, aka "Windows Media Player Memory Corruption...
CVE-2010-2745
CVE-2010-2745 is a Windows Media Player memory corruption vulnerability affecting WMP 9–12. It arises when Windows Media Player fails to deallocate objects during a browser reload, allowing a remote attacker to execute arbitrary code by convincing a user to visit a crafted web page. Exploitation ...
Remote code execution
Unspecified vulnerability in the Windows Media Player ActiveX control in Windows Media Player WMP 9 on Microsoft Windows 2000 SP4 and XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted media content, aka "Media Player Remote Code Execution Vulnerability."...
Memory corruption
The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via crafted media content...
Code injection
Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted media content, as reported to Microsoft by Dave Lenoe of Adobe...
CVE-2009-4210
The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via crafted media content...
Design/Logic Flaw
Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted media content, as reported to Microsoft by Paul Byrne of NGS Software. NOTE: this might overlap CVE-2008-3615...
CVE-2009-4311
Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted media content, as reported to Microsoft by Paul Byrne of NGS Software. NOTE: this might overlap CVE-2008-3615...