Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution
Microsoft is investigating new public reports of a new vulnerability in Microsoft DirectX. The vulnerability could allow remote code execution if user opened a specially crafted QuickTime media file. Microsoft is aware of limited, active attacks that use this exploit code. While our investigation is ongoing, our investigation so far has shown that Windows 2000 Service Pack 4, Windows XP, and Windows Server 2003 are vulnerable; all versions of Windows Vista and Windows Server 2008 are not vulnerable. Microsoft has activated its Software Security Incident Response Process (SSIRP) and is continuing to investigate this issue.
read more on :
This entry was posted
on 6/7/09
at 4:59 PM
and is filed under
Microsoft Security Advisory,
security
. You can follow any responses to this entry through the
comments feed
.
