(MS11-015) Vulnerabilities in Windows Media Could Allow Remote Code Execution (2510030)

  Severity: CRITICAL
  CVE Identifier: CVE-2011-0032,CVE-2011-0042
  Advisory Date: MAY 18, 2011

  DESCRIPTION

This update resolves a vulnerability in DirectShow and a vulnerability in Windows Media Player and Windows Media Center. If a user opens a specially crafted Microsoft Digital Video Recording (.dvr-ms) file, the more sever of these vulnerabilities could allow remote code execution. More specifically, this update addresses the vulnerabilities by modifying the way the library files and Windows media files are opened.

  TREND MICRO PROTECTION INFORMATION


For information on patches specific to the affected software, please proceed to the Microsoft Web page.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1004373
  Trend Micro Deep Security DPI Rule Name: Identified Microsoft DLL File Over Network Share

  AFFECTED SOFTWARE AND VERSION

  • Windows XP Media Center Edition 2005 Service Pack 3
  • Windows XP Service Pack 3
  • Windows XP Professional x64 Edition Service Pack 2
  • Windows Vista Service Pack 1 and Windows Vista Service Pack 2
  • Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
  • Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1
  • Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1
  • Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1
  • Windows Media Center TV Pack for Windows Vista (32-bit editions)
  • Windows Media Center TV Pack for Windows Vista (64-bit editions)