FILE Microsoft DirectShow QuickTime Movie Parsing Code Execution (CVE-2009-1537)

Rule ID

1057529

Severity

Critical

Description

A memory corruption vulnerability exists in Microsoft Windows AVI File API. The vulnerability is due to a boundary error when parsing crafted AVI files containing a truncated AVIH chunk. An attacker could exploit this vulnerability by enticing a target user to open a malicious AVI file.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

Exploits

IPS Anomaly Group

N/A

IPS Rule Default Action

Allow

References

CVE-2009-1537

T1204.002

T0863

Keywords

Windows 2000, Windows 2003 Server, Windows Server 2003, Windows XP

Date Created

2013/04/26

Last Updated

2025/03/31

This website uses cookies to ensure you get the best experience on our website.

Learn more