MS08-032: Critical security update of ActiveX kill bits

Resolves a privately reported vulnerability that could allow remote code execution if a user views a specially crafted Web page by using Internet Explorer.INTRODUCTION Microsoft has released security bulletin MS08-032. The security bulletin contains all the relevant information about the security...

Microsoft Windows Speech组件语音识别远程命令执行漏洞（MS08-032）

BUGTRAQ ID: 22359 CVECAN ID: CVE-2007-0675 Microsoft Windows是微软发布的非常流行的操作系统。 如果Windows中启用了语音识别功能的话，则Speech组件sapi.dll中存在远程执行代码漏洞。攻击者可以通过构造嵌入了声音对象的特制网页来利用该漏洞，当用户查看网页时，该漏洞可能允许远程执行代码。成功利用此漏洞的攻击者可以获得与登录用户相同的用户权限。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP1 Microsoft...

Microsoft DirectX SAMI文件及MJPEG视频流解析栈溢出漏洞（MS08-032）

BUGTRAQ ID: 29581,29578 CVECAN ID: CVE-2008-0011,CVE-2008-1444 Microsoft DirectX是Windows操作系统中的一项功能，流媒体在玩游戏或观看视频时通过这个功能支持图形和声音。 DirectX在解析SAMI文件中的Class Name变量属性参数时存在栈溢出漏洞，Windows MJPEG Codec在解析ASF或AVI媒体文件中内嵌的MJPEG音频流时存在另一个栈溢出漏洞。如果用户受骗打开或预览了恶意的媒体文件的话，就可以触发这些溢出，导致执行任意指令。 Microsoft DirectX 9.0...

Microsoft Security Bulletin MS08-032 - Moderate Cumulative Security Update of ActiveX Kill Bits (950760)

Microsoft Security Bulletin MS08-032 - Moderate Cumulative Security Update of ActiveX Kill Bits 950760 Published: June 10, 2008 Version: 1.0 General Information Executive Summary This security update resolves a publicly reported vulnerability for the Microsoft Speech API. The vulnerability could...

Microsoft Windows Speech Components sapi.dll Code Execution (MS08-032; CVE-2007-0675)

The ActiveX Speech Components sapi.dll is part of the Microsoft Speech Application Programming Interface SAPI that allows the use of speech recognition and speech synthesis within Windows applications. A remote code execution vulnerability has been reported in the ActiveX Speech Components...