Windows : Microsoft Bulletins : Microsoft Windows Codecs Library Multiple RCE Vulnerabilities

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.817300

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Windows Codecs Library Multiple RCE Vulnerabilities

Zusammenfassung: This host is missing an important security; update according to Microsoft updates for Windows Codecs Library.

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft updates for Windows Codecs Library.

Vulnerability Insight:
Multiple flaws exist due to multiple errors
in the way that Microsoft Windows codecs library handles objects in memory.

Vulnerability Impact:
Successful exploitation will allow an attacker
to execute arbitrary code on affected system.

Affected Software/OS:
- Microsoft Windows 10 Version 1709 for 32-bit Systems

- Microsoft Windows 10 Version 1709 for x64-based Systems

- Microsoft Windows 10 Version 1803 for 32-bit Systems

- Microsoft Windows 10 Version 1803 for x64-based Systems

- Microsoft Windows 10 Version 1809 for 32-bit Systems

- Microsoft Windows 10 Version 1809 for x64-based Systems

- Microsoft Windows 10 Version 1903 for 32-bit Systems

- Microsoft Windows 10 Version 1903 for x64-based Systems

- Microsoft Windows 10 Version 1909 for 32-bit Systems

- Microsoft Windows 10 Version 1909 for x64-based Systems

- Microsoft Windows 10 Version 2004 for 32-bit Systems

- Microsoft Windows 10 Version 2004 for x64-based Systems

Solution:
The vendor has released updates and will be
automatically installed. Please see the references for more information.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2020-1425
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1425
Common Vulnerability Exposure (CVE) ID: CVE-2020-1457
https://www.zerodayinitiative.com/advisories/ZDI-20-1081/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1457

Copyright Copyright (C) 2020 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.817300
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Codecs Library Multiple RCE Vulnerabilities
Zusammenfassung:	This host is missing an important security; update according to Microsoft updates for Windows Codecs Library.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft updates for Windows Codecs Library. Vulnerability Insight: Multiple flaws exist due to multiple errors in the way that Microsoft Windows codecs library handles objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code on affected system. Affected Software/OS: - Microsoft Windows 10 Version 1709 for 32-bit Systems - Microsoft Windows 10 Version 1709 for x64-based Systems - Microsoft Windows 10 Version 1803 for 32-bit Systems - Microsoft Windows 10 Version 1803 for x64-based Systems - Microsoft Windows 10 Version 1809 for 32-bit Systems - Microsoft Windows 10 Version 1809 for x64-based Systems - Microsoft Windows 10 Version 1903 for 32-bit Systems - Microsoft Windows 10 Version 1903 for x64-based Systems - Microsoft Windows 10 Version 1909 for 32-bit Systems - Microsoft Windows 10 Version 1909 for x64-based Systems - Microsoft Windows 10 Version 2004 for 32-bit Systems - Microsoft Windows 10 Version 2004 for x64-based Systems Solution: The vendor has released updates and will be automatically installed. Please see the references for more information. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-1425 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1425 Common Vulnerability Exposure (CVE) ID: CVE-2020-1457 https://www.zerodayinitiative.com/advisories/ZDI-20-1081/ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1457
Copyright	Copyright (C) 2020 Greenbone AG