MS10-033: Vulnerabilities in Media Decompression Could Allow Remote Code Execution (979902)
High Nessus Plugin ID 46840
SynopsisOpening a specially crafted media file can result in arbitrary code execution.
DescriptionThe remote Windows host has multiple unspecified code execution vulnerabilities related to media decompression. A remote attacker could exploit this by tricking a user into opening a specially crafted media file, resulting in arbitrary code execution.
SolutionMicrosoft has released a set of patches for DirectX 9, Windows Media Format Runtime, Windows Media Encoder, and Asycfilt.dll (COM component).