PT-2010-3504 · Microsoft · Directshow+2
Published
2010-06-08
·
Updated
2023-12-07
·
CVE-2010-1880
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Microsoft Windows versions prior to the fixed version
Description
The issue allows remote attackers to execute arbitrary code via a media file with crafted compression data. This is related to an unspecified vulnerability in Quartz.dll for DirectShow.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Directshow
Quartz.Dll
Windows