Color Space Conversion Vulnerability in Microsoft Windows Media Player 11
CVE-2010-1042

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Media Player
Vendor: CVE Published:; 23 March 2010

Summary

The vulnerability in Microsoft Windows Media Player 11 arises from improper color space conversion, which can be exploited by remote attackers. By crafting a malicious .AVI file, attackers may trigger memory corruption, leading to a potential denial of service or arbitrary code execution on affected systems. The full implications of this flaw could expose users to considerable security risks, as the origins of these vulnerabilities have been reported through third-party channels.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/57205

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/38790

vdb-entryx_refsource_BID

EPSS Score

41% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 23, 2010
Vulnerability Reserved
Mar 22, 2010