Vulnerability CVE-2010-0265 - CERT Civis.Net

Vulnerability Name:

CVE-2010-0265 (CCN-56460)

Assigned:

2010-03-09

Published:

2010-03-09

Updated:

2018-10-30

Summary:

Buffer overflow in Microsoft Windows Movie Maker 2.1, 2.6, and 6.0, and Microsoft Producer 2003, allows remote attackers to execute arbitrary code via a crafted project (.MSWMM) file, aka "Movie Maker and Producer Buffer Overflow Vulnerability."
Per: http://www.microsoft.com/technet/security/Bulletin/MS10-016.mspx

'[1]These versions of Windows Movie Maker are delivered with the indicated operating systems.

[2]Windows Movie Maker 2.6 is an optional download that can be installed on the indicated operating systems. Windows 7 systems without Movie Maker 2.6 installed are not affected.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
7.3 High (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
7.3 High (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2010-0265

Source: CCN
Type: SA38791
Microsoft Windows Movie Maker Buffer Overflow Vulnerability

Source: CCN
Type: SA38845
Microsoft Producer Project File Parsing Buffer Overflow

Source: CCN
Type: IBM Internet Security Systems Protection Alert
Microsoft Movie Maker Buffer Overflow

Source: CCN
Type: Microsoft Security Bulletin MS10-016
Vulnerability in Microsoft Movie Maker Could Allow Remote Code Execution (975561)

Source: CCN
Type: Microsoft Security Bulletin MS10-050
Vulnerability in Movie Maker Could Allow Remote Code Execution (981997)

Source: CCN
Type: Microsoft Security Bulletin MS10-093
Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (2424434)

Source: CCN
Type: BID-38515
Microsoft Windows Movie Maker and Producer '.mswmm' Buffer Overflow Vulnerability

Source: CERT
Type: US Government Resource
TA10-068A

Source: MS
Type: UNKNOWN
MS10-016

Source: XF
Type: UNKNOWN
ms-moviemaker-bo(56460)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:8595

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [09-4-2010]

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:windows_movie_maker:2.1:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:*

Configuration 2:

cpe:/a:microsoft:windows_movie_maker:2.6:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*

Configuration 3:

cpe:/a:microsoft:windows_movie_maker:6.0:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*

Configuration 4:

cpe:/a:microsoft:windows_movie_maker:2.6:*:*:*:*:*:*:*

OR cpe:/a:microsoft:windows_movie_maker:6.0:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_vista:*:*:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp1:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:sp2:x64:*:*:*:*:*

Configuration 5:

cpe:/a:microsoft:windows_movie_maker:2.6:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_7:-:*:*:*:*:*:*:*

Configuration 6:

cpe:/a:microsoft:producer:2003:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:microsoft:windows_7:*:*:*:*:*:*:*:*

OR cpe:/a:microsoft:producer:2003:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/a:microsoft:powerpoint:2003:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:*:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp::sp2:x64:*:professional:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp1:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp3:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp2:x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:8595	V	Movie Maker and Producer Buffer Overflow Vulnerability	2015-08-10