HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2010-1879

CVSS 9.3v2.0pub. 2010-06-08upd. 2026-04-29

Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."

CVSS Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
  • Microsoft Directx

    APP
    Microsoft
    9.09.0a9.0b9.0c
  • Microsoft Windows Media Encoder

    APP
    Microsoft
    9
  • Microsoft Windows Media Format Runtime

    APP
    Microsoft
    1199.5
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2009-1537HIGH8.8⚠ KEVten sam produkt

Unspecified vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft Direct...

CVE-2013-3127HIGH9.3ten sam produkt

The Microsoft WMV video codec in wmv9vcm.dll, wmvdmod.dll in Windows Media Format Runtime 9 and 9.5, and wmvde...

CVE-2012-1537HIGH9.3ten sam produkt

Heap-based buffer overflow in DirectPlay in DirectX 9.0 through 11.1 in Microsoft Windows XP SP2 and SP3, Wind...

CVE-2010-3965HIGH9.3ten sam produkt

Untrusted search path vulnerability in Windows Media Encoder 9 on Microsoft Windows XP SP2 and SP3, Windows Se...

CVE-2010-1880HIGH9.3ten sam produkt

Unspecified vulnerability in Quartz.dll for DirectShow on Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2...