Remote code execution vulnerability in Indeo Codec - MS12-014ID: oval:org.secpod.oval:def:4148 | Date: (C)2012-02-16 (M)2022-03-31 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS12-014. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which is caused when the Indeo Codec incorrectly restricts the path used for loading external libraries. Successful exploitation allows attackers to take complete control of an affected system.
Platform: |
Microsoft Windows XP |