Home / bulletins

MS10-094 - Important: Vulnerability in Windows Media Encoder Could Allow Remote Code Execution (2447961) - Version:1.0

Posted on 14 December 2010

Important

Severity Rating: Important - Revision Note: 1.0 (December 14, 2010): Bulletin published.Summary: This security update resolves a publicly disclosed vulnerability in Windows Media Encoder. The vulnerability could allow remote code execution if an attacker convinces a user to open a legitimate Windows Media Profile (.prx) file that is located in the same network directory as a specially crafted library file. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a document from this location that is then loaded by a vulnerable application.

Link

 

TOP