MS Windows Codecs Library RCE Vulnerability
Microsoft has just released emergency security patches for two critical security holes in the Windows Codecs Library.
Microsoft on Tuesday released emergency security patches to plug a pair of serious vulnerabilities in its Windows Codecs library that impact several Windows 10 and Windows Server versions.
Indexed as CVE-2020-1425 and CVE-2020-1457, the two remote-code execution (RCE) flaws are rated as ‘critical’ and ‘important’ in severity, respectively.
The updates address the way how Microsoft Windows Codecs Library handles objects in memory.