Executive Summary
Summary | |
---|---|
Title | Vulnerability in Cinepak Codec Could Allow Remote Code Execution (982665) |
Informations | |||
---|---|---|---|
Name | MS10-055 | First vendor Publication | 2010-08-10 |
Vendor | Microsoft | Last vendor Modification | 2010-08-12 |
Severity (Vendor) | Critical | Revision | 1.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.1 (August 12, 2010): Added Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 to the Non-Affected Software table.Summary: This security update resolves a privately reported vulnerability in Cinepak Codec. The vulnerability could allow remote code execution if a user opens a specially crafted media file or receives specially crafted streaming content from a Web site or any application that delivers Web content. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS10-055.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:11773 | |||
Oval ID: | oval:org.mitre.oval:def:11773 | ||
Title: | Cinepak Codec Decompression Vulnerability | ||
Description: | The Cinepak codec in Microsoft Windows XP SP2 and SP3, Windows Vista SP1 and SP2, and Windows 7 does not properly decompress media files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Cinepak Codec Decompression Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2553 | Version: | 5 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 2 | |
Os | 4 | |
Os | 2 |
ExploitDB Exploits
id | Description |
---|---|
2010-09-26 | MOAUB #26 - Microsoft Cinepak Codec CVDecompress Heap Overflow |
OpenVAS Exploits
Date | Description |
---|---|
2010-08-11 | Name : Remote Code Execution Vulnerability in Cinepak Codec (982665) File : nvt/secpod_ms10-055.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
66984 | Microsoft Windows iccvid.dll VIDC (Cinepak) Codec Decompression Arbitrary Cod... Microsoft Windows contains a flaw in the way the Cinepak codec handles supported format files. The issue could allow code execution if a user opened a specially crafted media file. If a user is logged on with administrative user rights, this may allow an attacker to take complete control of an affected system. |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-08-12 | IAVM : 2010-A-0103 - Microsoft Cinepak Codec Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0025067 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Windows AVI cinepak codec decompression remote code execution attempt RuleID : 19403 - Revision : 17 - Type : FILE-MULTIMEDIA |
2014-01-10 | Microsoft Windows AVI cinepak codec decompression remote code execution attempt RuleID : 17128 - Revision : 19 - Type : FILE-MULTIMEDIA |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-08-11 | Name : A media codec on the remote Windows host has a code execution vulnerability. File : smb_nt_ms10-055.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:46:38 |
|
2014-01-19 21:30:30 |
|
2013-11-11 12:41:18 |
|