Описание
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code.
Exploitation of the vulnerability requires that a program process a specially crafted image file.
The update addresses the vulnerability by correcting how Microsoft Windows Codecs Library handles objects in memory.
FAQ
How does a user know if the update has been installed?
You can check the version of the installed package. For example, click on Settings, Apps & Features, and select HEVC, Advanced Options. You will see the version there. The secure versions are 1.0.32762.0, 1.0.32763.0, and later.
Is Windows vulnerable in the default configuration?
No. Only customers who have installed the optional HEVC or "HEVC from Device Manufacturer" media codecs from Microsoft Store may be vulnerable.
How do I get the updated Windows Media Codec?
Affected customers will be automatically updated by Microsoft Store. Customers do not need to take any action to receive the update.
Alternatively, customers who want to receive the update immediately can check for updates with the Microsoft Store App; more information on this process can be found here.
Why are these security updates offered to affected clients via the Microsoft Store and not Windows Update?
These updates are for optional apps/components that are offered to customers as a download via the Microsoft Store. Updates for optional store apps/components are provided via the Microsoft Store.
My server is in a disconnected environment, is it vulnerable?
HEVC is not available for offline distribution and not supported on Windows Server. Users should not have it installed in these environments. Enterprise customers using Store for Business will receive the update in the same manner as consumer Store.
Why are these updates being offered outside of Update Tuesday?
Servicing for store apps/components does not follow the monthly “Update Tuesday” cadence, but are offered whenever necessary.
Are these updates for Microsoft store apps/components offered automatically when an affected component is on the system?
Yes. However, it is possible to turn off automatic updating for store apps. In that scenario, these updates would not be installed automatically.
How can I check from PowerShell if the update is installed?
The following command will display the version of the installed package:
Get-AppxPackage -Name Microsoft.HEVCVideoExtension*
Возможность эксплуатации
Publicly Disclosed
Exploited
DOS
EPSS
7.8 High
CVSS3
Связанные уязвимости
<p>A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code.</p> <p>Exploitation of the vulnerability requires that a program process a specially crafted image file.</p> <p>The update addresses the vulnerability by correcting how Microsoft Windows Codecs Library handles objects in memory.</p>
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'.
Уязвимость библиотеки для обработки медиаконтента Microsoft Windows Codecs Library операционной системы Windows, позволяющая нарушителю выполнить произвольный код
Уязвимость компонента Windows Codecs Library операционных систем Windows, позволяющая нарушителю выполнить произвольный код
EPSS
7.8 High
CVSS3