A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.
There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage.
The security update addresses the vulnerability by correcting how Windows Media Foundation handles objects in memory.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2020-08-17T19:13:07
Updated: 2024-08-04T06:39:09.643Z
Reserved: 2019-11-04T00:00:00
Link: CVE-2020-1478
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-08-17T19:15:15.490
Modified: 2024-01-19T00:15:11.780
Link: CVE-2020-1478
Redhat
No data.