CVE-2020-1239

Name of the Vulnerable Software and Affected Versions Windows Media Foundation (affected versions not specified) Windows Media Player (affected versions not specified)

Description The issue is related to errors in handling objects in memory within the Windows Media Foundation component of Windows operating systems. This can be exploited by a remote attacker using a specially crafted document or web page, potentially allowing them to install programs, view, modify, or delete data, or create new accounts with full user rights. The vulnerability enables remote attackers to execute arbitrary code and affect the system.

Recommendations For Windows Media Foundation, consider disabling the handling of specially crafted documents or web pages until a patch is available. For Windows Media Player, restrict access to potentially vulnerable media file processing functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.