Oval Definition:oval:org.mitre.oval:def:7517
Revision Date:2014-08-18Version:56
Title:Media Decompression Vulnerability
Description:Unspecified vulnerability in Quartz.dll for DirectShow; Windows Media Format Runtime 9, 9.5, and 11; Media Encoder 9; and the Asycfilt.dll COM component allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "Media Decompression Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-1879
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Quartz.dll (DirectShow)
Windows Media Format Runtime 11
Windows Media Format Runtime 9.0
Windows Media Format Runtime 9.5
Definition Synopsis
  • Vulnerable Microsoft Windows 2000 / Quartz in DirectX 9.0
  • Microsoft Windows 2000 is installed
  • AND DirectX 9.0x Installed
  • AND the version of Quartz.dll is less than 6.5.1.914
  • OR Vulnerable Microsoft Windows XP (x86) / Quartz
  • Microsoft Windows XP (32-bit) is installed
  • AND the version of Quartz.dll is less than 6.5.2600.3665
  • OR Vulnerable Microsoft Windows XP (x86) / Quartz
  • Microsoft Windows XP (32-bit) is installed
  • AND the version of Quartz.dll is less than 6.5.2600.5933
  • OR Vulnerable Microsoft Windows XP x64, Server 2003 x86/x64/ia64 / Quartz
  • Microsoft Windows XP x64, Server 2003 x86/x64/ia64
  • Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • AND the version of Quartz.dll is less than 6.5.3790.4660
  • OR Vulnerable Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64 - GDR / Quartz
  • Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of Quartz.dll is less than 6.6.6001.18461
  • OR Vulnerable Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64 - LDR / Quartz
  • Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of Quartz.dll is less than 6.6.6001.22672
  • AND the version of Quartz.dll is greater than or equal 6.6.6001.22000
  • OR Vulnerable Windows Media Format Runtime 9.0 on Windows 2000
  • Microsoft Windows 2000 is installed
  • AND Wmvcore.dll for Windows Media Format 9.0 is installed.
  • AND the version of Wmvcore.dll is less than 9.0.0.3369
  • OR Vulnerable Windows Media Format Runtime 9.0 on Windows XP (x86) SP2
  • Microsoft Windows XP (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 9.0 is installed.
  • AND the version of Wmvcore.dll is less than 9.0.0.3272
  • OR Windows Media Format Runtime 9.5 on Windows XP (x86) SP2
  • Microsoft Windows XP (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 9.5 is installed.
  • AND the version of Wmvcore.dll is less than 10.0.0.3706
  • OR Windows Media Format Runtime 11 on Windows XP (x86) SP2
  • Microsoft Windows XP (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 11.0 is installed.
  • AND the version of Wmvcore.dll is less than 11.0.5721.5275
  • OR Windows Media Format Runtime 9.0 on Windows XP (x86)
  • Microsoft Windows XP (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 9.0 is installed.
  • AND the version of Wmvcore.dll is less than 9.0.0.4509
  • OR Windows Media Format Runtime 9.5 on Windows XP (x86)
  • Microsoft Windows XP (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 9.5 is installed.
  • AND the version of Wmvcore.dll is less than 10.0.0.3706
  • OR Windows Media Format Runtime 11 on Windows XP (x86)
  • Microsoft Windows XP (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 11.0 is installed.
  • AND the version of Wmvcore.dll is less than 11.0.5721.5275
  • OR Windows Media Format Runtime 9.5 on Windows XP x64
  • Microsoft Windows XP x64 is installed
  • AND Wmvcore.dll for Windows Media Format 9.5 on x64-bit platform is installed.
  • AND the version of %SystemRoot%\SysWOW64\Wmvcore.dll is less than 10.0.0.4007
  • OR Windows Media Format Runtime 11 on Windows XP x64
  • Microsoft Windows XP x64 is installed
  • AND Wmvcore.dll for Windows Media Format 11.0 on x64-bit platform is installed.
  • AND the version of %SystemRoot%\SysWOW64\Wmvcore.dll is less than 11.0.5721.5275
  • OR Windows Media Format Runtime 9.5 on Windows Server 2003 x86
  • Microsoft Windows Server 2003 (32-bit) is installed
  • AND Wmvcore.dll for Windows Media Format 9.5 is installed.
  • AND the version of Wmvcore.dll is less than 10.0.0.4007
  • OR Windows Media Format Runtime 9.5 on Windows Server 2003 x64 SP2
  • Microsoft Windows Server 2003 (x64) is installed
  • AND Wmvcore.dll for Windows Media Format 9.5 on x64-bit platform is installed.
  • AND the version of %SystemRoot%\SysWOW64\Wmvcore.dll is less than 10.0.0.4007
  • OR Windows Media Encoder 9, 32-bit version
  • Microsoft Windows 2000, XP x86, Server 2003 x86, Vista x86, Server 2008 32bit
  • Microsoft Windows 2000 is installed
  • OR Microsoft Windows XP (32-bit) is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • AND the version of Wmenceng.dll is greater than or equal to 9.0.0.0
  • AND the version of Wmenceng.dll is less than 9.0.0.3369
  • OR Windows Media Encoder 9 WOW, 64-bit version
  • Microsoft Windows XP x64, Server 2003 x64, Vista x64, Server 2008 64bit
  • Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • AND the version of Program Files (x86)\Windows Media Components\Encoder\Wmenceng.dll is greater than or equal to 9.0.0.0
  • AND the version of Program Files (x86)\Windows Media Components\Encoder\Wmenceng.dll is less than 9.0.0.3369
  • OR Windows Media Encoder 9, 64-bit version
  • Microsoft Windows XP x64, Server 2003 x64, Vista x64, Server 2008 64bit
  • Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • AND the version of Wmenceng.dll is greater than or equal to 10.0.0.0
  • AND the version of Wmenceng.dll is less than 10.0.0.3821
  • OR Vulnerable Microsoft Windows 2000 / Asycfilt.dll (COM component)
  • Microsoft Windows 2000 is installed
  • AND the version of Asycfilt.dll is less than 2.40.4534.0
  • OR Vulnerable Microsoft Windows XP (x86) / Asycfilt.dll (COM component)
  • Microsoft Windows XP (32-bit) is installed
  • AND the version of Asycfilt.dll is less than 5.1.2600.3680
  • OR Vulnerable Microsoft Windows XP (x86) / Asycfilt.dll (COM component)
  • Microsoft Windows XP (32-bit) is installed
  • AND the version of Asycfilt.dll is less than 5.1.2600.5949
  • OR Vulnerable Microsoft Windows XP x64, Server 2003 x86/x64/ia64 / Asycfilt.dll (COM component)
  • Microsoft Windows XP x64, Server 2003 x64/x86/ia64
  • Microsoft Windows XP x64 is installed
  • OR Microsoft Windows Server 2003 (x64) is installed
  • OR Microsoft Windows Server 2003 (32-bit) is installed
  • OR Microsoft Windows Server 2003 (ia64) Gold is installed
  • AND the version of Asycfilt.dll is less than 5.2.3790.4676
  • OR Vulnerable Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64 - GDR / Asycfilt.dll (COM component)
  • Microsoft Windows Vista x64/x86, Server 2008 32bit/64bit/ia-64 Gold
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of Asycfilt.dll is less than 6.0.6001.18454
  • OR Vulnerable Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64 - LDR / Asycfilt.dll (COM component)
  • Microsoft Windows Vista x64/x86, Server 2008 32bit/64bit/ia-64 Gold
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of Asycfilt.dll is less than 6.0.6001.22665
  • AND the version of Asycfilt.dll is greater than or equal 6.0.6001.22000
  • OR Vulnerable Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64 - GDR / Asycfilt.dll (COM component)
  • Microsoft Windows Vista SP2 x64/x86, Server 2008 32bit/64bit/ia-64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of Asycfilt.dll is less than 6.0.6002.18236
  • OR Vulnerable Microsoft Windows Vista x86/x64, Server 2008 32bit/x64/ia64 - LDR / Asycfilt.dll (COM component)
  • Microsoft Windows Vista SP2 x64/x86, Server 2008 32bit/64bit/ia-64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of Asycfilt.dll is less than 6.0.6002.22377
  • AND the version of Asycfilt.dll is greater than or equal 6.0.6002.22000
  • OR Vulnerable Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x86/x64/ia64 - GDR / Asycfilt.dll (COM component)
  • Microsoft Windows 7 x64/x86, Server 2008 R2 x64/ia-64
  • Microsoft Windows 7 (32-bit) is installed
  • OR Microsoft Windows 7 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed
  • AND the version of Asycfilt.dll is less than 6.1.7600.16544
  • OR Vulnerable Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x86/x64/ia64 - LDR / Asycfilt.dll (COM component)
  • Microsoft Windows 7 x64/x86, Server 2008 R2 x64/ia-64
  • Microsoft Windows 7 (32-bit) is installed
  • OR Microsoft Windows 7 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 x64 Edition is installed
  • OR Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed
  • AND the version of Asycfilt.dll is less than 6.1.7600.20660
  • AND the version of Asycfilt.dll is greater than or equal to 6.1.7600.20000
    • BACK