Lucene search
K

18 matches found

Prion
Prion
added 2013/07/10 3:46 a.m.14 views

Remote code execution

The Microsoft WMV video codec in wmv9vcm.dll, wmvdmod.dll in Windows Media Format Runtime 9 and 9.5, and wmvdecod.dll in Windows Media Format Runtime 11 and Windows Media Player 11 and 12 allows remote attackers to execute arbitrary code via a crafted media file, aka "WMV Video Decoder Remote Cod...

9.3CVSS8.5AI score0.2191EPSS
Exploits1References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2010/06/09 12:0 a.m.61 views

MS10-033: Vulnerabilities in Media Decompression Could Allow Remote Code Execution (979902)

The remote Windows host has multiple unspecified code execution vulnerabilities related to media decompression. A remote attacker could exploit this by tricking a user into opening a specially crafted media file, resulting in arbitrary code execution. C Tenable Network Security, Inc...

9.3CVSS6AI score0.21221EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2010/06/09 12:0 a.m.26 views

Microsoft Media Decompression Remote Code Execution Vulnerability (979902)

This host is missing a critical security update according to Microsoft Bulletin MS10-033. OpenVAS Vulnerability Test $Id: secpodms10-033.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Media Decompression Remote Code Execution Vulnerability 979902 Authors: Veerendra GG Updated By: Madhuri D on...

9.3CVSS0.5AI score0.21221EPSS
Exploits1References2
NVD
NVD
added 2010/06/08 10:30 p.m.24 views

CVE-2010-1879

Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."...

9.3CVSS7.5AI score0.20284EPSS
Exploits1References3
Cvelist
Cvelist
added 2010/06/08 10:0 p.m.29 views

CVE-2010-1879

Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."...

7.4AI score0.20284EPSS
Exploits1References3
NVD
NVD
added 2009/09/08 10:30 p.m.18 views

CVE-2009-2498

Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format ASF files, which allows remote attackers to execute arbitrary code via a crafted 1 .asf, 2 .wmv, or 3 .wma file, aka "Windows Media...

9.3CVSS7.3AI score0.2121EPSS
Exploits1References3
seebug.org
seebug.org
added 2008/12/11 12:0 a.m.43 views

Microsoft Windows媒体组件SPN实现远程代码执行漏洞(MS08-076)

BUGTRAQ ID: 32653 CVECAN ID: CVE-2008-3009 Windows媒体组件包括Windows Media Player、Windows Media Format Runtime和Windows Media Services等多种服务和应用。 Windows媒体组件在使用NTLM认证协议(具体来说,是SPN)的方式存在安全漏洞。在访问媒体之前,服务器会提示一些使用Windows媒体组件的媒体播放器(如Windows Media...

10CVSS6.9AI score0.1583EPSS
Exploits1
seebug.org
seebug.org
added 2008/12/11 12:0 a.m.25 views

Microsoft Windows媒体组件ISATAP URL处理信息泄露漏洞(MS08-076)

BUGTRAQ ID: 32654 CVECAN ID: CVE-2008-3010 Windows媒体组件包括Windows Media Player、Windows Media Format Runtime和Windows Media Services等多种服务和应用。...

10CVSS6.9AI score0.15194EPSS
Exploits1
Prion
Prion
added 2008/12/10 2:0 p.m.12 views

Design/Logic Flaw

Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1, 9, and 2008 do not properly use the Service Principal Name SPN identifier when validating replies to authentication requests, which allows remote servers to execute arbitrary code via...

10CVSS7.9AI score0.1583EPSS
Exploits1References8Affected Software3
NVD
NVD
added 2008/12/10 2:0 p.m.20 views

CVE-2008-3010

Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate ISATAP addresses with the Local Intranet zone, which allows remote servers to capture NTLM credentials, and execute arbitrary code through...

10CVSS7.6AI score0.15194EPSS
Exploits1References8
Cvelist
Cvelist
added 2008/12/10 1:33 p.m.25 views

CVE-2008-3010

Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate ISATAP addresses with the Local Intranet zone, which allows remote servers to capture NTLM credentials, and execute arbitrary code through...

7.6AI score0.15194EPSS
Exploits1References8
securityvulns
securityvulns
added 2008/12/10 12:0 a.m.59 views

Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)

Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution 959807 Published: December 9, 2008 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities in the followin...

10CVSS2AI score0.1583EPSS
Exploits2
CVE
CVE
added 2007/12/12 12:0 a.m.52 views

CVE-2007-0064

The CVE-2007-0064 entry concerns a heap-based buffer overflow in the Windows Media Format Runtime (and Windows Media Services) ASF parsing code. A remote attacker could exploit this by delivering a specially crafted ASF file, potentially allowing arbitrary code execution on affected systems. Affe...

9.3CVSS7.7AI score0.35976EPSS
Exploits1References9Affected Software1
CERT
CERT
added 2007/12/12 12:0 a.m.25 views

Microsoft Windows Media Format Runtime ASF handling buffer overflow

Overview Microsoft Windows Media Format Runtime is vulnerable to a heap-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on an vulnerable system. Description Microsoft Windows Media Format Runtime is used by various Windows Media...

9.3CVSS7.2AI score0.35976EPSS
Exploits1References1
seebug.org
seebug.org
added 2006/12/15 12:0 a.m.24 views

Microsoft Windows Media ASF和ASX解析缓冲区溢出漏洞

Windows Media Player是Microsoft开发的流行的媒体播放程序。 Windows Media Format Runtime处理特殊的ASF和ASX文件存在问题,远程攻击者可利用漏洞以应用程序进程权限执行任意指令。 攻击者可以构建包含特殊Windows Media Player的内容恶意页面,诱使用户访问,可以以应用程序进程权限执行任意指令。目前没有详细漏洞细节提供。 Microsoft Windows Media Format 7.1 through 9.5 Series Runtime -Microsoft Windows 2000 Service Pack 4...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.10 views

Security Update for Windows Media Format Runtime 9 for Windows 2000 (KB978695)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...

3.8AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.11 views

Security Update for 32-bit Windows Media Format Runtime 11 for Windows XP x64 Edition (KB954155)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...

3.6AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.11 views

Security Update for Windows Media Format Runtime 9 for Windows 2000 (KB954155)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...

3.8AI score
Exploits0
Rows per page
Query Builder