Vulnerability Note VU#996227
Windows Media Encoder WMEX.DLL ActiveX Control buffer overflow
The WMEX.DLL ActiveX control, which is installed by Windows Media Encoder 9 Series, contains a buffer overflow vulnerability.
According to Microsoft, the Windows Media Encoder is a tool used to capture audio and video content using Windows Media. The WMEX.DLL ActiveX control contains a buffer overflow vulnerability.
By convincing a user to view a specially crafted web page, an attacker may be able to execute arbitrary code with the privileges of the user.
Apply an update
Microsoft has published Microsoft Security Bulletin MS08-053 in response to this issue.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||09 Sep 2008|
CVSS Metrics (Learn More)
Microsoft credits Nguyen Minh Duc and Le Manh Tung, with Bach Khoa Internetwork Security Center (BKIS), Hanoi University of Technology (Vietnam), for reporting this vulnerability.
This document was written by John Hollenberger.
- CVE IDs: CVE-2008-3008
- Date Public: 09 Sep 2008
- Date First Published: 09 Sep 2008
- Date Last Updated: 02 Oct 2008
- Severity Metric: 44.89
- Document Revision: 15
If you have feedback, comments, or additional information about this vulnerability, please send us email.