Lucene search
Hossein Lotfi of Trend Micro Zero Day InitiativeZDI-20-1175HistoryOct 16, 2020 - 12:00 a.m.
Microsoft Windows Camera Codec Pack Image Processing Out-Of-Bounds Write Remote Code Execution Vulnerability
2020-10-1600:00:00
Hossein Lotfi of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
32
0.017 Low
EPSS
Percentile
87.9%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WindowsCodecsRaw module. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
cvelist
cvelist
CVE-2020-0997 Windows Camera Codec Pack Remote Code Execution Vulnerability
2020-09-11 17:08:34
mscve
mscve
Windows Camera Codec Pack Remote Code Execution Vulnerability
2020-09-08 07:00:00
prion
prion
Remote code execution
2020-09-11 17:15:00
zdi
zdi
cve
cve
CVE-2020-0997
2020-09-11 17:15:15
cnvd
cnvd
nvd
nvd
CVE-2020-0997
2020-09-11 17:15:15
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4577049)
2020-09-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4577032)
2020-09-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4577015)
2020-09-09 00:00:00
mskb
mskb
September 8, 2020âKB4577049 (OS Build 10240.18696)
2021-02-09 08:00:00
September 8, 2020âKB4577041 (OS Build 16299.2107)
2020-10-13 07:00:00
September 8, 2020âKB4577032 (OS Build 17134.1726)
2021-02-09 08:00:00
nessus
nessus
KB4577049: Windows 10 September 2020 Security Update
2020-09-08 00:00:00
KB4577041: Windows 10 Version 1709 September 2020 Security Update
2020-09-08 00:00:00
kaspersky
kaspersky
KLA11951 Multiple vulnerabilities in Microsoft Windows
2020-09-08 00:00:00
avleonov
avleonov