Intrusion Prevention

MS.Windows.Movie.Maker.Dll.Hijacking

Description

This indicates an attack attempt against a DLL Hijacking vulnerability in Microsoft Windows Movie Maker.
The vulnerability exists because of the way that Windows Movie Maker handles the loading of DLL files. An attacker who successfully exploits this vulnerability could take complete control of an affected system.

Affected Products

Windows Vista Service Pack 1
Windows Vista Service Pack 2
Windows Vista x64 Edition Service Pack 1
Windows Vista x64 Edition Service Pack 2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
Windows Vista Service Pack 1 and Windows Vista Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=55141A02-3AD3-4691-98B9-80DD8ECB14C5
Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=5B078136-A492-4A2E-939D-82799F774D82

CVE References

CVE-2010-3967