CVE-2012-0150

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description A buffer overflow issue exists in the way the msvcrt DLL calculates buffer size, allowing remote code execution when a user opens a specially crafted media file. This could give an attacker complete control of the system if the user has administrative rights, enabling them to install programs, view, change, or delete data, or create new accounts. Users with fewer user rights may be less impacted.

Recommendations For Microsoft Windows versions prior to the fixed version, apply the necessary patch to resolve the buffer overflow issue in msvcrt.dll. As a temporary workaround, consider restricting the use of Microsoft Windows Media Player to minimize the risk of exploitation.