Firefox 3.5.10 & 3.6.6 WMP Popups Memory Corruption
Severity: : Critical
CVE Kennungen: : CVE-2010-2745
Advisory Date: 21 lipca 2015
DESCRIPTION
Microsoft Windows Media Player (WMP) 9 through 12 does not properly deallocate objects during a browser reload action, which allows user-assisted remote attackers to execute arbitrary code via crafted media content referenced in an HTML document, aka "Windows Media Player Memory Corruption Vulnerability."
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004477
AFFECTED SOFTWARE AND VERSION:
- microsoft windows_media_player 10
- microsoft windows_media_player 11
- microsoft windows_media_player 12
- microsoft windows_media_player 9