Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-0077

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2013-0077
Last Modified 02 Nov 2013 11:29:21
Published 13 Feb 2013 07:04:12
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-0077

Summary

Quartz.dll in DirectShow in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote attackers to execute arbitrary code via crafted media content in (1) a media file, (2) a media stream, or (3) a Microsoft Office document, aka "Media Decompression Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows Server 2003

  • Microsoft Windows Server 2008

  • Microsoft Windows Vista

  • Microsoft Windows Xp

  • Microsoft Windows Xp -


References

MS - MS13-011

CERT - TA13-043B

Related Patches

MS13-011 Security Update for XP (KB2780091)

MS13-011 Security Update for Windows Server 2008 (KB2780091)

MS13-011 Security Update for Windows Server 2003 (KB2780091)

MS13-011 Security Update for Windows Vista (KB2780091)

MS13-011 Security Update for Windows Server 2003 x64 (KB2780091)

MS13-011 Security Update for Windows Vista x64 (KB2780091)

MS13-011 Security Update for Windows Server 2008 x64 (KB2780091)


Last Updated: 27 May 2016 10:51:51