Lucene search
AnonymousZDI-08-040HistoryJun 10, 2008 - 12:00 a.m.
Microsoft DirectX SAMI File Format Name Parsing Stack Overflow Vulnerability
2008-06-1000:00:00
Anonymous
www.zerodayinitiative.com
10
0.87 High
EPSS
Percentile
98.6%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the parsing of SAMI files. When handling the properties of a “Class Name” variable a lack of bounds checking can result in a stack overflow. Successful exploitation can lead to remote code execution under the credentials of the logged in user.
Related
cvelist
cvelist
CVE-2008-1444
2008-06-12 01:30:00
prion
prion
Stack overflow
2008-06-12 02:32:00
nvd
nvd
CVE-2008-1444
2008-06-12 02:32:00
cve
cve
CVE-2008-1444
2008-06-12 02:32:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
ZDI-08-040: Microsoft DirectX SAMI File Format Name Parsing Stack Overflow Vulnerability
2008-06-11 00:00:00
Microsoft Security Bulletin MS08-033 – Critical Vulnerabilities in DirectX Could Allow Remote Code Execution (951698)
2008-06-11 00:00:00
Microsoft DirectX code execution
2008-06-11 00:00:00
seebug
seebug
Microsoft DirectX SAMI文件及MJPEG视频流解析栈溢出漏洞(MS08-032)
2008-06-12 00:00:00
openvas
openvas
Vulnerabilities in DirectX Could Allow Remote Code Execution (951698)
2008-09-30 00:00:00
Microsoft DirectX RCE Vulnerabilities (951698)
2008-09-30 00:00:00
nessus
nessus