Design/Logic Flaw

2010-06-0822:30:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

0.922 High

EPSS

Percentile

99.0%

JSON

Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka “Media Decompression Vulnerability.”

CPENameOperatorVersion
directxeq9.0.97
directxeq9.0.98
directxeq9.0.99
directxeq9.0
windows_media_encodereq9 x86
windows_media_encodereq9 x64
windows_media_format_runtimeeq9
windows_media_format_runtimeeq9.5
windows_media_format_runtimeeq9.5 x64
windows_media_format_runtimeeq11

Name	Operator	Version
directx	eq	9.0.97
directx	eq	9.0.98
directx	eq	9.0.99
directx	eq	9.0
windows_media_encoder	eq	9 x86
windows_media_encoder	eq	9 x64
windows_media_format_runtime	eq	9
windows_media_format_runtime	eq	9.5
windows_media_format_runtime	eq	9.5 x64
windows_media_format_runtime	eq	11