Lucene search
K

10 matches found

seebug.org
seebug.org
added 2007/08/15 12:0 a.m.24 views

Microsoft DirectX Media SDK DXTLIPI.DLL ActiveX缓冲区溢出漏洞

Microsoft DirectX Media SDK是一组底层应用程序编程接口API。 Microsoft DirectX Media SDK DXTLIP.DLL ActiveX控件存在缓冲区溢出,远程攻击者可以利用漏洞以链接此库的应用程序执行任意指令。 问题是DXTLIP.DLL ActiveX控件在处理"SourceUrl"方法时缺少充分的边界检查,提交超长字符串作为参数数据,并诱使用户访问,可导致缓冲区溢出,精心构建提交数据可能以链接此库的应用程序执行任意指令。 Microsoft DirectX Media SDK 6.0 目前没有详细解决方案提供:...

7AI score
Exploits0
Prion
Prion
added 2007/08/14 6:17 p.m.16 views

Buffer overflow

Buffer overflow in the Live Picture Corporation DXSurface.LivePicture.FlashPix.1 DirectTransform FlashPix ActiveX control in DXTLIPI.DLL 6.0.2.827, as packaged in Microsoft DirectX Media 6.0 SDK, allows remote attackers to execute arbitrary code via a long SourceUrl property value...

4.3CVSS8.4AI score0.50711EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2007/08/14 6:0 p.m.40 views

CVE-2007-4336

The CVE-2007-4336 entry concerns a buffer overflow in the Live Picture Corporation DXSurface.LivePicture.FlashPix.1 (DirectTransform FlashPix) ActiveX control, packaged in DXTLIPI.DLL version 6.0.2.827 within Microsoft DirectX Media 6.0 SDK. The vulnerability arises from processing a long SourceU...

4.3CVSS7.8AI score0.50711EPSS
Exploits0References8Affected Software1
0day.today
0day.today
added 2007/08/10 12:0 a.m.20 views

Microsoft DXMedia SDK 6 (SourceUrl) ActiveX Remote Code Execution

Exploit for unknown platform in category remote exploits ================================================================= Microsoft DXMedia SDK 6 SourceUrl ActiveX Remote Code Execution ================================================================= Tested on:.. - Microsoft DirectX Media 6.0 S...

7.1AI score
Exploits0
myhack58
myhack58
added 2007/08/03 12:0 a.m.14 views

MS Internet Explorer 6 DirectX Media Remote Overflow DoS Exploit-vulnerability warning-the black bar safety net

!--============================================================================ dxtmsft.dll Remote Buffer Overflow Exploit Internet Explorer ver 6.0 DeltahackingSecurityTEAM Bug discovered by Dr. Pantagon Affected Software: dxtmsft.dll DirectX Media -- Image DirectX Transforms DLL VER :...

1.5AI score
Exploits0
exploitpack
exploitpack
added 2007/07/31 12:0 a.m.10 views

Microsoft Internet Explorer 6 - DirectX Media Remote Overflow Denial of Service

Microsoft Internet Explorer 6 - DirectX Media Remote Overflow Denial of Service Sub jojo buff = String999999, "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaA" getEDX = "aaaaaaaaaaaaaaaaaaaaaaaaaaaaabbbbbbbbbbbbbbcccccccccccccddddddddddeee" buff1 = String999999,...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/31 12:0 a.m.27 views

Microsoft Internet Explorer 6 - DirectX Media Remote Overflow Denial of Service

Sub jojo buff = String999999, "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaA" getEDX = "aaaaaaaaaaaaaaaaaaaaaaaaaaaaabbbbbbbbbbbbbbcccccccccccccddddddddddeee" buff1 = String999999, "BBBBBBBBBBBBBBBBBBBBBBBBBBBBbb" egg = buff + getEDX + buff1 + scode Chroma.Color = egg End S...

7.4AI score
Exploits0
NVD
NVD
added 2006/08/23 1:4 a.m.27 views

CVE-2006-4301

Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service crash via a long Color attribute in multiple DirectX Media Image DirectX Transforms ActiveX COM Objects from a dxtmsft.dll and b dxtmsft3.dll, including 1 DXImageTransform.Microsoft.MaskFilter.1, 2...

5CVSS6.6AI score0.38959EPSS
Exploits1References8
Cvelist
Cvelist
added 2006/08/23 1:0 a.m.28 views

CVE-2006-4301

Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service crash via a long Color attribute in multiple DirectX Media Image DirectX Transforms ActiveX COM Objects from a dxtmsft.dll and b dxtmsft3.dll, including 1 DXImageTransform.Microsoft.MaskFilter.1, 2...

6.6AI score0.38959EPSS
Exploits1References8
Exploit DB
Exploit DB
added 2006/06/13 12:0 a.m.22 views

Microsoft DXImageTransform.Microsoft.Light - ActiveX Control Remote Code Execution

source: https://www.securityfocus.com/bid/18303/info The DXImageTransform.Microsoft.Light ActiveX control is prone to remote code execution. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page. Unable to create object Sub go...

7.4AI score
Exploits0
Rows per page
Query Builder