Home / bulletins MS12-004 - Critical : Vulnerabilities in Windows Media Could Allow Remote Code Execution (2636391) - Version: 1.1
Posted on 12 January 2012
There is an newer version: MS12-004 - Version: 1.3
CriticalSeverity Rating: Critical
Revision Note: V1.1 (January 11, 2012): Clarified the FAQ entries for CVE-2012-0003 that address the scope of the vulnerability and how an attacker could exploit the vulnerability. These are informational changes only. There were no changes to the security update files or detection logic.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if a user opens a specially crafted media file. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.Other versions
- MS12-004 - Version: 1.0
- MS12-004 - Version: 1.1
- MS12-004 - Version: 1.2
- MS12-004 - Version: 1.3
