The Windows Server Notebook

Jun 1 2009   7:20PM GMT

“Fix” available for new Windows DirectShow flaw

Bcournoyer Brendan Cournoyer Profile: Bcournoyer

Late last week, Microsoft released an advisory warning of a new vulnerability that could strike users simply by opening a Web page. Windows Vista users (if there are any out there) along with those running Windows Server 2008 are safe, but XP, Server 2003 and Windows 2000 are all affected.

According to, the flaw is in the QuickTime parser in DirectShow, and can be used by an attacker to execute code remotely.

While there is no official fix for the issue as of yet, there is a workaround that Microsoft is currently recommending. Also, Michael Horowitz over at Computerworld has posted a neat little cheat sheet for solving the problem that is defintely worth checking out.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: