18 matches found
Remote code execution
The Microsoft WMV video codec in wmv9vcm.dll, wmvdmod.dll in Windows Media Format Runtime 9 and 9.5, and wmvdecod.dll in Windows Media Format Runtime 11 and Windows Media Player 11 and 12 allows remote attackers to execute arbitrary code via a crafted media file, aka "WMV Video Decoder Remote Cod...
MS10-033: Vulnerabilities in Media Decompression Could Allow Remote Code Execution (979902)
The remote Windows host has multiple unspecified code execution vulnerabilities related to media decompression. A remote attacker could exploit this by tricking a user into opening a specially crafted media file, resulting in arbitrary code execution. C Tenable Network Security, Inc...
Microsoft Media Decompression Remote Code Execution Vulnerability (979902)
This host is missing a critical security update according to Microsoft Bulletin MS10-033. OpenVAS Vulnerability Test $Id: secpodms10-033.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Media Decompression Remote Code Execution Vulnerability 979902 Authors: Veerendra GG Updated By: Madhuri D on...
CVE-2010-1879
Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."...
CVE-2010-1879
Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."...
CVE-2009-2498
Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format ASF files, which allows remote attackers to execute arbitrary code via a crafted 1 .asf, 2 .wmv, or 3 .wma file, aka "Windows Media...
Microsoft Windows媒体组件SPN实现远程代码执行漏洞(MS08-076)
BUGTRAQ ID: 32653 CVECAN ID: CVE-2008-3009 Windows媒体组件包括Windows Media Player、Windows Media Format Runtime和Windows Media Services等多种服务和应用。 Windows媒体组件在使用NTLM认证协议(具体来说,是SPN)的方式存在安全漏洞。在访问媒体之前,服务器会提示一些使用Windows媒体组件的媒体播放器(如Windows Media...
Microsoft Windows媒体组件ISATAP URL处理信息泄露漏洞(MS08-076)
BUGTRAQ ID: 32654 CVECAN ID: CVE-2008-3010 Windows媒体组件包括Windows Media Player、Windows Media Format Runtime和Windows Media Services等多种服务和应用。...
Design/Logic Flaw
Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1, 9, and 2008 do not properly use the Service Principal Name SPN identifier when validating replies to authentication requests, which allows remote servers to execute arbitrary code via...
CVE-2008-3010
Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate ISATAP addresses with the Local Intranet zone, which allows remote servers to capture NTLM credentials, and execute arbitrary code through...
CVE-2008-3010
Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate ISATAP addresses with the Local Intranet zone, which allows remote servers to capture NTLM credentials, and execute arbitrary code through...
Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution 959807 Published: December 9, 2008 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities in the followin...
CVE-2007-0064
The CVE-2007-0064 entry concerns a heap-based buffer overflow in the Windows Media Format Runtime (and Windows Media Services) ASF parsing code. A remote attacker could exploit this by delivering a specially crafted ASF file, potentially allowing arbitrary code execution on affected systems. Affe...
Microsoft Windows Media Format Runtime ASF handling buffer overflow
Overview Microsoft Windows Media Format Runtime is vulnerable to a heap-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on an vulnerable system. Description Microsoft Windows Media Format Runtime is used by various Windows Media...
Microsoft Windows Media ASF和ASX解析缓冲区溢出漏洞
Windows Media Player是Microsoft开发的流行的媒体播放程序。 Windows Media Format Runtime处理特殊的ASF和ASX文件存在问题,远程攻击者可利用漏洞以应用程序进程权限执行任意指令。 攻击者可以构建包含特殊Windows Media Player的内容恶意页面,诱使用户访问,可以以应用程序进程权限执行任意指令。目前没有详细漏洞细节提供。 Microsoft Windows Media Format 7.1 through 9.5 Series Runtime -Microsoft Windows 2000 Service Pack 4...
Security Update for Windows Media Format Runtime 9 for Windows 2000 (KB978695)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for 32-bit Windows Media Format Runtime 11 for Windows XP x64 Edition (KB954155)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for Windows Media Format Runtime 9 for Windows 2000 (KB954155)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...