MS12-004: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2636391)
High Nessus Plugin ID 57472
SynopsisOpening a specially crafted media file could result in arbitrary code execution.
DescriptionThe version of Windows Media installed on the remote host is affected by one or both of the following vulnerabilities :
- The Winmm.dll library as used by Windows Media Player does not properly handle specially crafted MIDI files.
- A DirectShow component of DirectX does not properly handle specially crafted media files. (CVE-2012-0004)
An attacker who tricked a user on the affected host into opening a specially crafted MIDI or media file could leverage these issues to execute arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, 2008, 7, and 2008 R2 as well as Windows XP Media Center Edition 2005 and Windows Media Center TV Pack 2008.