HIGH✓ PATCH🇬🇧 English

CVE-2013-3127

CVSS 9.3v2.0pub. 2013-07-10upd. 2026-04-29

The Microsoft WMV video codec in wmv9vcm.dll, wmvdmod.dll in Windows Media Format Runtime 9 and 9.5, and wmvdecod.dll in Windows Media Format Runtime 11 and Windows Media Player 11 and 12 allows remote attackers to execute arbitrary code via a crafted media file, aka "WMV Video Decoder Remote Code Execution Vulnerability."

oryginał EN
CVSS Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
  • Microsoft Windows Media Format Runtime

    APP
    Microsoft
    1199.5
  • Microsoft Windows Media Player

    APP
    Microsoft
    1112
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2015-1728HIGH9.3ten sam produkt

Microsoft Windows Media Player 10 through 12 allows remote attackers to execute arbitrary code via a crafted D...

CVE-2010-2745HIGH9.3ten sam produkt

Microsoft Windows Media Player (WMP) 9 through 12 does not properly deallocate objects during a browser reload...

CVE-2010-3138HIGH9.3ten sam produkt

Untrusted search path vulnerability in the Indeo Codec in iac25_32.ax in Microsoft Windows XP SP3 allows local...

CVE-2010-1879HIGH9.3ten sam produkt

Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Enc...

CVE-2010-0268HIGH9.3ten sam produkt

Unspecified vulnerability in the Windows Media Player ActiveX control in Windows Media Player (WMP) 9 on Micro...