iTWire - Microsoft warns of zero-day DirectShow vulnerability

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Information Technology News

Microsoft warns of zero-day DirectShow vulnerability

Microsoft warns of zero-day DirectShow vulnerability

E-mail

by Stephen Withers
Friday, 29 May 2009
Page 1 of 2 There's no fix yet, but Microsoft is warning its customers of a vulnerability in DirectShow in older versions of Windows. The flaw is being exploited. Featured Whitepaper 5 Best Practices for Smartphone Support DirectShow, part of DirectX, is a multimedia framework in Windows used for handling media files. It is used, for example, by Windows Media Player. The vulnerability affects Windows 2000, XP and Server 2003, but not Vista, Server 2008 or Windows 7. The problem is that a maliciously formed QuickTime video file passed to DirectShow can lead to remote code execution with the same rights as the current user. Given that so many people use administrator accounts, a successful exploit could take full control of their systems. As the vulnerability is in DirectShow, it can be exploited whether or not QuickTime is installed on the target system. A malicious video file could be distributed via email or web sites. In the latter case, viewing the relevant page with any browser that uses DirectShow to handle media files will allow the exploit to do its dirty work. There's no timeframe for a fix, but Microsoft does offer three workarounds. Please read on for a link to the most effective and easiest to apply. << First page < 1 2 Next page > Last page - Post your comment >>

< Next story in category		Previous story in the category >

Sponsored Releases

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

British Airways selects Progress Software SOA Solutions to upgrade the travel experience

...Promote your press-releases here

Latest jobs

User Experience Architect (C4)
Consulting Services Branch Manager
Process Analyst X 4 (M4)
Content Co-Ordinator (M3)
Senior .Net Developer (M3)
Business Analyst (M17)
Test Lead
Senior Business Analyst
Business Analyst - Financial Markets, Ops focus
Technical Business Analyst - BI & DW - Contract

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking