Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-1319: Microsoft Windows Codecs Library Remote Code Execution Vulnerability

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Microsoft CVE-2020-1319: Microsoft Windows Codecs Library Remote Code Execution Vulnerability

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

09/08/2020

Created

09/09/2020

Added

09/08/2020

Modified

01/03/2024

Description

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Exploitation of the vulnerability requires that a program process a specially crafted image file. The update addresses the vulnerability by correcting how Microsoft Windows Codecs Library handles objects in memory.

Solution(s)

msft-kb4570333-0e3dc4b3-4757-43e3-a5d4-bf64c1856363
msft-kb4570333-29c3870f-41e5-4b7e-9359-08711b8ad66e
msft-kb4570333-739f0c41-56d7-4c6d-b281-ae8cddd515e5
msft-kb4571756-5b919d47-fce4-48a0-8d72-b3fc27b78f6e
msft-kb4571756-7f9dc7dd-e107-4cde-a5c9-c82424dc0188
msft-kb4571756-d9ae9dd6-1205-4639-be95-fc8ac95e9e8d
msft-kb4574727-0eef97a6-edd8-47e9-b6c7-d2f66afcc6a1
msft-kb4574727-12d4f3e2-1a12-4563-978b-96b1b621df36
msft-kb4574727-1cbef2ba-180c-4af6-952c-677aa11a5779
msft-kb4574727-48c91ab8-33a2-4dc3-96b2-9d75dc6c1f78
msft-kb4574727-a14ba9ee-0c81-47f9-bbd2-cf987fbbf948
msft-kb4574727-f7018f14-f8b1-44e1-97a3-9eb35850608b
msft-kb4577015-6fa76bfe-50a8-4387-beba-0ab551736216
msft-kb4577015-8fb3d8cd-fe1a-4152-9947-3bb4fe83b382
msft-kb4577015-c3a56d50-56c4-4194-a672-93da34558a39
msft-kb4577032-6a3c57fe-6501-4f98-a125-c6acc8ea9d2b
msft-kb4577032-cb9e4f82-02f6-4506-86a1-b10479e2e94d
msft-kb4577041-5ad28358-0282-4fb3-a463-e455e5565d55
msft-kb4577041-92a489ff-3e71-4b8a-93d2-d11344cf680c
msft-kb4577048-2a6f610f-3d94-44f9-9494-dff5d7dc4c7d
msft-kb4577048-4b7a0848-ef4a-4215-b0b5-44b613dfa7a5
msft-kb4577048-8b77cb70-27e9-4194-8f41-961ff9f368e3
msft-kb4577049-6682b054-79c0-44a7-b27c-ff99cf243de2
msft-kb4577049-6d56d939-8a21-4e37-9d76-b6a12bc61667
msft-kb4577053-12c49102-1b38-42a7-8c2a-9d72e0144a4d
msft-kb4577053-2cb12d27-8402-4b36-b44e-6496985fe4bb
msft-kb4577053-2fd523e1-6405-49f3-969f-cf7b165622ec
msft-kb4577053-8d0ba4d5-cad5-40be-b7a6-217507cba489
msft-kb4577053-ec5db2e3-9ef0-4898-b29d-f06265c1bd45
msft-kb4577070-09dac0b6-2b41-4365-b493-1f9100614a59
msft-kb4577070-f641b947-d0d7-449a-8152-9de3a3ff376b
msft-kb4577071-3ff40370-a545-4963-ac68-b4514134ae04
msft-kb4577071-4e5fb1e0-c9ea-4e9c-bf38-01f1f39da91f
msft-kb4577071-5ee69013-65fa-44f4-b211-f707351514e9

References

https://attackerkb.com/topics/cve-2020-1319
CVE - 2020-1319
4570333
4571756
4574727
4577015
4577032
4577038
4577041
4577048
4577049
4577051
4577053
4577064
4577066
4577070
4577071

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-1319: Microsoft Windows Codecs Library Remote Code Execution Vulnerability

Microsoft CVE-2020-1319: Microsoft Windows Codecs Library Remote Code Execution Vulnerability

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.