Vulnerabilities > Microsoft > Windows Media Encoder

DATE CVE VULNERABILITY TITLE RISK
2010-06-08 CVE-2010-1879 Code Injection vulnerability in Microsoft products
Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."
network
microsoft CWE-94
critical
 9.3
9.3
2008-09-11 CVE-2008-3008 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft products
Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Windows Media Encoder 9 Series allows remote attackers to execute arbitrary code via a long first argument to the GetDetailsString method, aka "Windows Media Encoder Buffer Overrun Vulnerability."
network
microsoft CWE-119
critical
 9.3
9.3