CVE-2003-0346

2003-08-27T04:00:00
ID CVE-2003-0346
Type cve
Reporter cve@mitre.org
Modified 2018-10-12T21:32:00

Description

Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow.