[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Microsoft Windows Media Encoder local code execution vulnerability - MS10-094

ID: oval:org.secpod.oval:def:1354Date: (C)2011-06-27   (M)2023-12-14
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS10-094. The update is required to fix code execution vulnerability. A flaw is present in the Microsoft Windows Media Encoder, which fails to load dynamic-link libraries such as wmerrorDAN.dll, wininetDAN.dll. Successful exploitation could allow a local attacker to execute arbitrary code via '.prx' or '.wme' file.

Platform:
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product:
Windows Media Encoder 9
Reference:
MS10-094
CVE-2010-3965
CVE    1
CVE-2010-3965
CPE    11
cpe:/o:microsoft:windows_server_2008:::x64
cpe:/o:microsoft:windows_server_2008:::x86
cpe:/o:microsoft:windows_xp::sp3:x86
cpe:/o:microsoft:windows_vista::sp2:x64
...
XCCDF    5
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_com.secpod_benchmark_microsoft-windows-vista
xccdf_com.secpod_benchmark_microsoft-windows-xp
...

© SecPod Technologies