Vulnerability Note VU#996227
Windows Media Encoder WMEX.DLL ActiveX Control buffer overflow
The WMEX.DLL ActiveX control, which is installed by Windows Media Encoder 9 Series, contains a buffer overflow vulnerability.
According to Microsoft, the Windows Media Encoder is a tool used to capture audio and video content using Windows Media. The WMEX.DLL ActiveX control contains a buffer overflow vulnerability.
By convincing a user to view a specially crafted web page, an attacker may be able to execute arbitrary code with the privileges of the user.
Apply an update
Microsoft has published Microsoft Security Bulletin MS08-053 in response to this issue.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||09 Sep 2008|
CVSS Metrics (Learn More)
Microsoft credits Nguyen Minh Duc and Le Manh Tung, with Bach Khoa Internetwork Security Center (BKIS), Hanoi University of Technology (Vietnam) , for reporting this vulnerability.
This document was written by John Hollenberger.
- CVE IDs: CVE-2008-3008
- Date Public: 09 Sep 2008
- Date First Published: 09 Sep 2008
- Date Last Updated: 02 Oct 2008
- Severity Metric: 44.89
- Document Revision: 15
If you have feedback, comments, or additional information about this vulnerability, please send us email.