Lucene search

PRIOn knowledge basePRION:CVE-2008-1444

HistoryJun 12, 2008 - 2:32 a.m.

Stack overflow

2008-06-1202:32:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.895 High

EPSS

Percentile

98.7%

JSON

Stack-based buffer overflow in Microsoft DirectX 7.0 and 8.1 on Windows 2000 SP4 allows remote attackers to execute arbitrary code via a Synchronized Accessible Media Interchange (SAMI) file with crafted parameters for a Class Name variable, aka the “SAMI Format Parsing Vulnerability.”

CPENameOperatorVersion
directxeq9.0
directxeq10.0
directxeq7.0
directxeq8.1

Name	Operator	Version
directx	eq	9.0
directx	eq	10.0
directx	eq	7.0
directx	eq	8.1

References

secunia.com/advisories/30579

securityreason.com/securityalert/3937

securitytracker.com/id?1020223

www.securityfocus.com/archive/1/493250/100/0/threaded

www.securityfocus.com/bid/29578

www.us-cert.gov/cas/techalerts/TA08-162B.html

www.vupen.com/english/advisories/2008/1780

www.zerodayinitiative.com/advisories/ZDI-08-040/

docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-033

marc.info/?l=bugtraq&m=121380194923597&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5562

8.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.895 High

EPSS

Percentile

98.7%

JSON

Related for PRION:CVE-2008-1444