Microsoft Windows Knowledge Base Article 977935 update is not installed (WinMs10kb977935Update)

Vuln ID: 55930
Risk Level: High risk vulnerability  High WinMs10kb977935Update
Platforms: Microsoft Windows 2000: SP4, Microsoft Windows XP: SP2, Microsoft Windows Vista, Microsoft Windows Server 2003: SP2, Microsoft Windows Server 2003: SP2 Itanium, Microsoft Windows Server 2003: SP2 x64, Microsoft Windows Vista: x64, Microsoft Windows XP: SP2 x64 Professional, Microsoft Windows Vista: SP1, Microsoft Windows Vista: SP1 x64, Microsoft Windows Server 2008: Itanium, Microsoft Windows Server 2008: x32, Microsoft Windows Server 2008: x64, Microsoft Windows XP: SP3, Microsoft Windows Vista: SP2 x64, Microsoft Windows Vista: SP2, Microsoft Windows Server 2008: SP2 x32, Microsoft Windows Server 2008: SP2 x64, Microsoft Windows 7: x64, Microsoft Windows 7: x32, Microsoft Windows Server 2008: R2 x64, Microsoft Windows Server 2008: R2 Itanium, Microsoft Windows Server 2008: SP2 Itanium, Microsoft AVI Filter, Microsoft Quartz
Description:

Microsoft Knowledge Base Article 977935 is not installed, which could allow a remote attacker to exploit the following vulnerability:

Microsoft DirectShow is vulnerable to a heap-based buffer overflow, caused by improper bounds checking when parsing malicious AVI files. By persuading a victim to open a specially-crafted AVI file, a remote attacker could exploit this vulnerability to overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the affected application to crash.
Remedy:

Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS10-013. See References.
False Positives:
False Negatives:
Required Permission: Windows login
Additional Information:

References:

Microsoft Security Bulletin MS10-013
Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)
http://www.microsoft.com/technet/security/bulletin/ms10-013.mspx

IBM Internet Security Systems X-Force Database
Microsoft DirectShow AVI file buffer overflow
http://xforce.iss.net/xforce/xfdb/55929

ISS X-Force
Microsoft Windows Knowledge Base Article 977935 update is not installed
http://www.iss.net/security_center/static/55930.php

CVE CVE-2010-0250
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0250
X-Force Logo
Know Your Risks		 Mitre.org CVE Logo
Common Vulnerabilties & Exposures