Microsoft Windows Indeo Filter 'iacenc.dll' DLL Loading Arbitrary Code Execution Vulnerability

Microsoft Windows is prone to a vulnerability that affects the Indeo filter ('iac25_32.ax') and lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

The issue affects Windows XP SP3 including 'iac25_32.ax' version 2.0.5.53.

Please note that this BID was initially created for Mediaplayer Classic. The entry was updated as the issue affects the Indeo filter which is used by Mediaplayer Classic and potentially other applications.


 

Privacy Statement
Copyright 2010, SecurityFocus