| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS10-050 | Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (981997) | Windows Vista | Critical | 11-08-2010 |
Technical Information
Brief overview of the risk:
The vulnerability could allow remote code execution if an attacker sent a specially crafted Movie Maker project file and convinced the user to open the specially crafted file.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that Windows Movie Maker handles specially crafted project files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Further information on this exploit is available at : MS10-050
Affected Software
Windows Vista x64 Edition Service Pack 1Windows Vista x64 Edition Service Pack 2
Windows XP Professional x64 Edition Service Pack 2
Windows XP Service Pack 3