Flaw in Directshow could expose systems

By on May 31, 2009 with Comments 0

The popular Directshow plugin that may people use to support video playback has a flaw that Microsoft warns could be used to execute arbitrary code.

The opening relies on malformed Quick Time video files (seems to be a common thread there) and can allow for remote execution of code at the logged in users level of access.

There is no direct fix for this but MS has released a registry patch to help prevent this from being exploited. The issue does not affect Vista or Windows 7.

Grab the Reg fix here.

news comp virus 17761 Flaw in Directshow could expose systems

In a statement, the Vole said that the attacks use malicious Quicktime media files and can cause remote code execution in the context of the logged-in user.

There is no patch for the vulnerability yet, but Microsoft has created a workaround registry script that you can download and run, at the Knowledge Base Article 971778.

VN:F [1.9.3_1094]
Rating: 0.0/10 (0 votes cast)
Share this useful Article:
  • Twitter
  • Digg
  • StumbleUpon
  • Facebook
  • MySpace
  • del.icio.us
  • Mixx
  • Technorati
  • N4G
  • Google Bookmarks
  • Yahoo! Buzz
  • Live
  • email
  • RSS

Filed Under: News

Tags:

Previous Post
« GELID Launches Slim Silence 1U...
Next Post
Asus to push out a Media Player at... »

About the Author:

RSSComments (0)

Trackback URL

Leave a Reply

You must be logged in to post a comment.

Or, sign-in super fast with your Facebook account ...