Unrated severityNVD Advisory· Published Oct 14, 2009· Updated Jun 16, 2026
CVE-2009-0555
CVE-2009-0555
Description
Microsoft Windows Media Runtime, as used in DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and Audio Compression Manager (ACM), does not properly process Advanced Systems Format (ASF) files, which allows remote attackers to execute arbitrary code via a crafted audio file that uses the Windows Media Speech codec, aka "Windows Media Runtime Voice Sample Rate Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21cpe:2.3:a:microsoft:windows_media_format_runtime:11:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:microsoft:windows_media_format_runtime:11:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:windows_media_format_runtime:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:windows_media_format_runtime:9.5:*:*:*:*:*:*:*
- (no CPE)
- cpe:2.3:a:microsoft:windows_media_player:9:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*+ 3 more
- cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x86:*
- cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-051nvdPatchVendor Advisory
- www.us-cert.gov/cas/techalerts/TA09-286A.htmlnvdThird Party AdvisoryUS Government Resource
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6407nvdThird Party Advisory
News mentions
0No linked articles in our index yet.