Home / bulletins MS09-052 - Critical: Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112) - Version:1.1
Posted on 30 October 2009
There is an newer version: MS09-052 - Version: 1.2
CriticalSeverity Rating: Critical - Revision Note: V1.1 (October 29, 2009): Removed a workaround. Also added an entry in the section, Frequently Asked Questions (FAQ) Related to This Security Update, to clarify why some customers without Windows Media Player 6.4 on their systems may be offered this update.Summary: This security update resolves a privately reported vulnerability in Windows Media Player. The vulnerability could allow remote code execution if a specially crafted ASF file is played using Microsoft Windows Media Player 6.4. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Other versions
- MS09-052 - Version: 1.1
- MS09-052 - Version: 1.0
- MS09-052 - Version: 1.2
