New Search

CSyncBasePlayer use after free vulnerability - CVE-2014-4060 (MS14-043)

oval:org.mitre.oval:def:26275

Use-after-free vulnerability in MCPlayer.dll in Microsoft Windows Media Center TV Pack for Windows Vista Windows 7 SP1 and Windows Media Center for Windows 8 and 8.1 allows remote attackers to execute arbitrary code via a crafted Office document that triggers deletion of a CSyncBasePlayer object aka "CSyncBasePlayer Use After Free Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows Vista
  • Microsoft Windows 8
  • Microsoft Windows 8.1
Class:
vulnerability
Reference(s):
  • CVE-2014-4060
Product(s):
  • Microsoft Windows Media Center