13 matches found
CVE-2012-1537
CVE-2012-1537 is a heap-based buffer overflow in the DirectPlay component of DirectX, affecting DirectX 9.0–11.1 on a broad set of Windows client/server platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012). The vulnerability all...
CVE-2009-1537
Summary of CVE-2009-1537 (DirectShow QuickTime parsing): A remote code execution vulnerability exists in the DirectShow QuickTime Movie Parser Filter (quartz.dll) within DirectX, affecting Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2, and potentially DirectX 7.0–9.0c. Exploitation requires a...
CVE-2010-1879
CVE-2010-1879 corresponds to a remote code execution vulnerability in Microsoft DirectShow/Media Decompression. The issue affects Quartz.dll (DirectShow), Windows Media Format Runtime versions 9, 9.5, 11, Media Encoder 9, and Asycfilt.dll, where specially crafted media data (notably MJPEG in AVI ...
CVE-2004-0202
CVE-2004-0202 concerns a denial-of-service vulnerability in the DirectPlay API, specifically the IDirectPlay4 interfaces of DirectPlay within Microsoft DirectX. The issue arises from insufficient input/packet validation of incoming network data, enabling a remote attacker to crash a DirectPlay-ba...
CVE-2008-0011
Microsoft DirectX contains two CVEs (CVE-2008-0011 and CVE-2008-1444) related to MJPEG and SAMI parsing, enabling remote code execution when a user opens specially crafted AVI/ASF/SAMI files. Affected products span DirectX components on Windows XP SP2/SP3, Server 2003, Windows Vista, and Windows ...
CVE-2007-3901
CVE-2007-3901 describes a stack-based buffer overflow in the DirectShow SAMI parser (quartz.dll) affecting Microsoft DirectX 7.0–10.0. A crafted SAMI file can trigger a remote code execution as described in multiple sources, with exploitation tied to MS07-064 and related advisories. Public exploi...
CVE-2010-1880
CVE-2010-1880 corresponds to the MS10-033 Windows DirectShow MJPEG media decompression vulnerability. Affected component is Quartz.dll/DirectShow used by Windows media handling on Windows 2000 SP4, XP SP2/SP3, Server 2003 SP2, Vista SP1, and Server 2008. The flaw allows remote code execution when...
CVE-2009-0084
CVE-2009-0084 is a memory corruption/use-after-free vulnerability in Microsoft DirectShow (DirectX 8.1 and 9.0) that allows remote code execution when processing specially crafted MJPEG files/streams. The underlying issue is improper handling of MJPEG content (malformed Huffman tables) in DirectS...
CVE-2008-1444
CVE-2008-1444 is a DirectX SAMI Format Parsing Vulnerability affecting Microsoft DirectX 7.0 and 8.1 on Windows 2000 SP4. The issue is a stack-based buffer overflow in the SAMI file parser (Class Name parameter) that can enable remote code execution when a user opens a crafted SAMI file. OpenVAS ...
CVE-2009-1539
CVE-2009-1539 concerns a DirectShow DirectX/Quartz component (quartz.dll) in Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2. The QuickTime Movie Parser Filter fails to validate certain size fields in QuickTime media files, enabling remote code execution via a crafted file or streaming content....
CVE-2003-0346
CVE-2003-0346, CAN CAN-2003-0346 is tied to a heap-based overflow in the Microsoft DirectX QUARTZ.DLL MIDI handling. A specially crafted MIDI file that sets an oversized Text/Copyright string or an excessive number of MThd tracks can trigger integer overflow, heap corruption, and arbitrary code e...
CVE-2009-1538
The CVE-2009-1538 family affects Microsoft DirectShow (quartz.dll) within DirectX 7.0–9.0c and DirectX/Windows DirectShow on Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2. A vulnerability exists in pointer validation when updating a QuickTime file, enabling remote code execution if a user ope...
CVE-2007-3895
CVE-2007-3895 describes a buffer overflow in Microsoft DirectShow (part of DirectX) across Windows DirectX 7.0–10.0. A remote attacker could trigger code execution by convincing a user to open a specially crafted WAV or AVI file. The issue arises from improper parsing within DirectX libraries han...