5 matches found
Microsoft DirectShow AVI Decoder Buffer Overflow (MS05-050; CVE-2005-2128)
Microsoft DirectX is a set of low-level application programming interfaces APIs for creating high-performance multimedia applications. Microsoft DirectShow is an architecture for streaming media on the Microsoft Windows platform and provides for the capture and playback of multimedia streams. It...
CVE-2005-2128
The CVE-2005-2128 issue affects Microsoft DirectShow (QUARTZ.DLL) used by Windows Media Player 9. A lack of validation of the AVI file’s strn element length allows a crafted .avi to cause a memory write (null byte) to an arbitrary location, enabling remote code execution. The vulnerability is exp...
CVE-2005-2128
QUARTZ.DLL in Microsoft Windows Media Player 9 allows remote attackers to write a null byte to arbitrary memory via an AVI file with a crafted strn element with a modified length value...
MS05-050: Vulnerability in DirectShow Could Allow Remote Code Execution (904706)
The remote host contains a version of DirectX that is vulnerable to a remote code execution flaw. To exploit this flaw, an attacker would need to send a specially malformed .avi file to a user on the remote host and have him open it. C Tenable Network Security, Inc. include"compat.inc"; if...
Microsoft DirectShow buffer overflow
Overview A buffer overflow in Microsoft DirectShow may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft DirectShow is a programming architecture for streaming multimedia on the Microsoft Windows platform. An input validation error in...