Zscaler Security Advisories

Security Advisory - March 08, 2011

Zscaler Provides Immediate Vulnerability Protection in the Face of Microsoft Patch Cycle

Zscaler, working with Microsoft through their MAPPs program, has proactively deployed protections for a vulnerability within a security bulletin included in the March 2011 Microsoft patch cycle. Zscaler will continue to monitor exploits associated with all vulnerabilities in the March release and deploy additional protections as necessary.

MS11-015 – Vulnerabilities in Windows Media Could Allow Remote Code Execution (2510030)

Severity: Critical
Affected Software

  • Windows XP
  • Windows Vista
  • Windows 7
  • Windows Media Center

CVE-2011-0042 - DVR-MS Vulnerability

Description: A remote code execution vulnerability exists in the way that Windows Media Player and Windows Media Center handle .dvr-ms files.  This vulnerability could allow an attacker to execute arbitrary code if the attacker convinces a user to open a specially crafted .dvr-ms file.