Windows Media Runtime Vulnerability in Microsoft Products
CVE-2009-0555

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 2000; Windows Media Format Runtime; Windows Media Player
Vendor: CVE Published:; 14 October 2009

Summary

The vulnerability in the Microsoft Windows Media Runtime affects components like DirectShow WMA Voice Codec and Windows Media Audio Voice Decoder. It arises from improper handling of Advanced Systems Format (ASF) files, allowing remote attackers to craft malicious audio files embedded with the Windows Media Speech codec. This flaw could enable the execution of arbitrary code on vulnerable systems, posing significant security risks for users who interact with compromised media content.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.us-cert.gov/cas/techalerts/TA09-286A.html

third-party-advisoryx_refsource_CERT

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

60% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 14, 2009
Vulnerability Reserved
Feb 12, 2009