Intrusion Prevention

MS.Windows.Media.Encoder.Dll.Hijacking

Description

This indicates an attack attempt against a DLL Hijacking vulnerability in Microsoft Windows Media Encoder.
The vulnerability exists because of the way that Windows Media Encoder handles the loading of DLL files. An attacker who successfully exploits this vulnerability could take complete control of an affected system.

Affected Products

Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Vista Service Pack 1
Windows Vista Service Pack 2
Windows Vista x64 Edition Service Pack 1
Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems
Windows Server 2008 for x64-based Systems Service Pack 2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
Windows XP Service Pack 3
http://www.microsoft.com/downloads/details.aspx?familyid=EF0ADA2C-965F-438F-A1D3-BD45DB8460C1
Windows XP Professional x64 Edition Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=DC777E61-E1E3-43BF-A84D-22C4A69C135D
http://www.microsoft.com/downloads/details.aspx?familyid=550957C2-CE66-439F-95EA-681237513F75
Windows Server 2003 Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=EF0ADA2C-965F-438F-A1D3-BD45DB8460C1
Windows Server 2003 x64 Edition Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=DC777E61-E1E3-43BF-A84D-22C4A69C135D
http://www.microsoft.com/downloads/details.aspx?familyid=550957C2-CE66-439F-95EA-681237513F75
Windows Vista Service Pack 1
http://www.microsoft.com/downloads/details.aspx?familyid=E8A57950-43CD-486F-BD97-70B0AD360A0B
Windows Vista Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=E8A57950-43CD-486F-BD97-70B0AD360A0B
Windows Vista x64 Edition Service Pack 1
http://www.microsoft.com/downloads/details.aspx?familyid=f98c3b96-acb5-49f1-be42-3dd44d316408
http://www.microsoft.com/downloads/details.aspx?familyid=E1054088-F484-4F44-BA0E-5CBD21773C0C
Windows Vista x64 Edition Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=f98c3b96-acb5-49f1-be42-3dd44d316408
http://www.microsoft.com/downloads/details.aspx?familyid=E1054088-F484-4F44-BA0E-5CBD21773C0C
Windows Server 2008 for 32-bit Systems
http://www.microsoft.com/downloads/details.aspx?familyid=A4EA028F-EDFC-4237-8325-7ECE11FCF437
Windows Server 2008 for 32-bit Systems Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=A4EA028F-EDFC-4237-8325-7ECE11FCF437
Windows Server 2008 for x64-based Systems
http://www.microsoft.com/downloads/details.aspx?familyid=f468d2b5-f02c-4691-9fb5-a7f69752f126
http://www.microsoft.com/downloads/details.aspx?familyid=533D91D8-0291-421E-9701-3BD86D18BC45
Windows Server 2008 for x64-based Systems Service Pack 2
http://www.microsoft.com/downloads/details.aspx?familyid=f468d2b5-f02c-4691-9fb5-a7f69752f126
http://www.microsoft.com/downloads/details.aspx?familyid=533D91D8-0291-421E-9701-3BD86D18BC45

CVE References

CVE-2010-3965