MS12-013: Vulnerability in C Run-Time Library Could Allow Remote Code Execution (2654428)
High Nessus Plugin ID 57947
SynopsisArbitrary code can be executed on the remote host through Microsoft's C run-time library.
DescriptionThe remote host contains a version of Microsoft's C run-time library that is affected by a buffer overflow vulnerability.
An attacker who tricked a user on the affected host into opening a specially crafted media file could leverage this issue to execute arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Windows Vista, 2008, 7, and 2008 R2.