Microsoft Movie Maker and Producer Buffer Overflow Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 10 Mar 2010 4242 Views

RISK: Medium Risk

A remote code execution vulnerability exists in the way that Windows Movie Maker and Microsoft Producer 2003 handle specially crafted project files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Impact

Remote Code Execution

System / Technologies affected

Movie Maker 2.6

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.
Download locations for this patch

Windows XP Service Pack 2 and Windows XP Service Pack 3

Movie Maker 2.1

Windows XP Professional x64 Edition Service Pack 2

Movie Maker 2.1

Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2
- Movie Maker 6.0
- Movie Maker 2.6
Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2
- Movie Maker 6.0
- Movie Maker 2.6
Windows 7 for 32-bit Systems
- Movie Maker 2.6
Windows 7 for x64-based Systems
- Movie Maker 2.6

Vulnerability Identifier

CVE-2010-0265

Source

Microsoft

Share with

Microsoft Office Excel Multiple Vulnerabilities

10 Mar 2010 4195 Views

Microsoft Internet Explorer Use-after-free Code Execution Vulnerability

10 Mar 2010 4413 Views