1 results (0.001 seconds)
CVSS: 9.3EPSS: 57%CPEs: 45EXPL: 0
CVSS: 9.3EPSS: 57%CPEs: 45EXPL: 0CVE-2009-2498
https://notcve.org/view.php?id=CVE-2009-2498
08 Sep 2009 — Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format (ASF) files, which allows remote attackers to execute arbitrary code via a crafted (1) .asf, (2) .wmv, or (3) .wma file, aka "Windows Media Header Parsing Invalid Free Vulnerability." Microsoft Windows Media Format Runtime v9.0, v9.5, y v11 y Windows Media Services v9.1 y 2008 no no analiza apropiadamente cabeceras malformadas en archivos Advanced... • http://www.us-cert.gov/cas/techalerts/TA09-251A.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •