Recently, Microsoft has released an emergency security update for critical vulnerabilities found that could allow an attacker to execute arbitrary code in vulnerable windows machine.
The vulnerability resides in the Microsoft Windows Codecs Library, which handles objects in the memory. The vulnerability was rated as critical and needs to be updated by the users.
Microsoft RCE Vulnerability
The vulnerability can be tracked as CVE-2020-1425 and CVE-2020-1457. The vulnerability can be exploited if a user opens the malicious image inside the application that uses the built-in Windows Codecs Library to handle multimedia content.
By exploiting the vulnerability the attacker can run arbitrary code on vulnerable Windows machines and can take over control over the victim’s Windows machine.
CVE-2020-1457
An attacker can execute a remote code execution that resides in the Microsoft Windows Codecs Library handles objects in memory. For successful exploitation, users need to open a specially crafted image file.
CVE-2020-1425
If CVE-2020-1425 exploited an attacker could obtain information to further compromise the user’s system. Both vulnerabilities were patched by Microsoft.
Windows Codesec Library Vulnerability
Microsoft had released an emergency security patch by correcting “how Microsoft Windows Codecs Library handles objects in memory.”
The affected customers will get automatically updated by Microsoft Store. So no user action is required. Microsoft said this vulnerability affects only HEVC(High-Efficiency Video Coding) or HEVC from Device Manufacturer media codecs from Microsoft Store may be vulnerable.
Once the update was complete users can check for the version by navigating to Settings >> Apps & Features and select HEVC >> Advanced Options. The secured versions are 1.0.31822.0, 1.0.31823.0, and later.