Executive Summary
Summary | |
---|---|
Title | Vulnerability in Microsoft MPEG Layer |
Informations | |||
---|---|---|---|
Name | MS10-026 | First vendor Publication | 2010-04-13 |
Vendor | Microsoft | Last vendor Modification | 2010-06-22 |
Severity (Vendor) | Critical | Revision | 1.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.1 (June 22, 2010): Revised this bulletin to announce a detection logic change to fix a reoffer issue with MPEG Layer-3 codecs on Microsoft Windows 2000 Service Pack 4. This is a detection change only that does not affect the files contained in the initial update. Customers who have successfully updated their systems do not need to reinstall this update.Summary: This security update resolves a privately reported vulnerability in Microsoft MPEG Layer-3 audio codecs. The vulnerability could allow remote code execution if a user opened a specially crafted AVI file containing an MPEG Layer-3 audio stream. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS10-026.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:7441 | |||
Oval ID: | oval:org.mitre.oval:def:7441 | ||
Title: | MPEG Layer-3 Audio Decoder Stack Overflow Vulnerability | ||
Description: | Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to execute arbitrary code via a crafted AVI file, aka "MPEG Layer-3 Audio Decoder Stack Overflow Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0480 | Version: | 3 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
ExploitDB Exploits
id | Description |
---|---|
2011-08-13 | MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflow |
2010-09-05 | MOAUB #5 - Microsoft MPEG Layer-3 Remote Command Execution Exploit |
OpenVAS Exploits
Date | Description |
---|---|
2010-04-14 | Name : Microsoft Windows Media Services Remote Code Execution Vulnerability (980858) File : nvt/secpod_ms10-025.nasl |
2010-04-14 | Name : Microsoft MPEG Layer-3 Codecs Remote Code Execution Vulnerability (977816) File : nvt/secpod_ms10-026.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
63749 | Microsoft Windows MPEG Layer-3 Audio Decoder AVI File Handling Overflow |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-04-15 | IAVM : 2010-A-0053 - Microsoft MPEG Layer-3 Codecs Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0023999 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Windows Media Player codec code execution attempt RuleID : 16543 - Revision : 16 - Type : FILE-MULTIMEDIA |
Metasploit Database
id | Description |
---|---|
2010-04-13 | MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflow |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-04-13 | Name : An audio codec on the remote Windows host has a buffer overflow vulnerability. File : smb_nt_ms10-026.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2020-05-23 13:17:13 |
|
2014-02-17 11:46:31 |
|
2014-01-19 21:30:27 |
|
2013-11-11 12:41:16 |
|