CVSS: 8.5EPSS: 78%CPEs: 23EXPL: 2CVE-2007-3901 – Microsoft DirectX DirectShow - SAMI Buffer Overflow (MS07-064)
https://notcve.org/view.php?id=CVE-2007-3901
12 Dec 2007 — Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft DirectX 7.0 through 10.0 allows remote attackers to execute arbitrary code via a crafted SAMI file. El desbordamiento de búfer en la región stack de la memoria en el analizador de intercambio de medios accesibles (SAMI) de DirectShow sincronizado en Quartz. dll para Microsoft DirectX versión 7.0 a la versión 10.0, permite a los atacantes remotos ejecutar código arbitrario a travé... • https://www.exploit-db.com/exploits/16442 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 71%CPEs: 1EXPL: 1CVE-2007-4336 – Microsoft DXMedia SDK 6 - 'SourceUrl' ActiveX Remote Code Execution
https://notcve.org/view.php?id=CVE-2007-4336
14 Aug 2007 — Buffer overflow in the Live Picture Corporation DXSurface.LivePicture.FlashPix.1 (DirectTransform FlashPix) ActiveX control in DXTLIPI.DLL 6.0.2.827, as packaged in Microsoft DirectX Media 6.0 SDK, allows remote attackers to execute arbitrary code via a long SourceUrl property value. Desbordamiento de búfer en el control ActiveX Live Picture Corporation DXSurface.LivePicture.FlashPix.1 (DirectTransform FlashPix) de DXTLIPI.DLL 6.0.2.827, como el empaquetado en Microsoft DirectX Media 6.0 SDK, permite a atac... • https://www.exploit-db.com/exploits/4279 •
CVSS: 7.8EPSS: 38%CPEs: 1EXPL: 0CVE-2006-4183
https://notcve.org/view.php?id=CVE-2006-4183
18 Jul 2007 — Heap-based buffer overflow in Microsoft DirectX SDK (February 2006) and probably earlier, including 9.0c End User Runtimes, allows context-dependent attackers to execute arbitrary code via a crafted Targa file with a run-length-encoding (RLE) compression that produces more data than expected when decoding. Un desbordamiento de búfer en la región heap de la memoria en Microsoft DirectX SDK (Febrero de 2006) y probablemente anteriores, incluido el End User Runtimes versión 9.0c, permite a los atacantes depend... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=562 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 29%CPEs: 28EXPL: 0CVE-2004-0202
https://notcve.org/view.php?id=CVE-2004-0202
11 Jun 2004 — IDirectPlay4 Application Programming Interface (API) of Microsoft DirectPlay 7.0a thru 9.0b, as used in Windows Server 2003 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed packet. El interfaz de programación de aplicación (API) IDirectPlay de Microsoft DirectPlay 7.0a a 9.0b, usado en Windows Server 2003 y anteriores, permite a atacantes remotos causar una denegación de servicio (caída de aplicación) mediante un paquete malformado. • http://secunia.com/advisories/11802 •
CVSS: 8.8EPSS: 25%CPEs: 6EXPL: 0CVE-2003-0346
https://notcve.org/view.php?id=CVE-2003-0346
25 Jul 2003 — Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow. Múltiples desbordamientos en una librería MIDI Microsoft Windows DirectX (QUARTZ.DLL) permite a atacantes remotos ejecutar código arbitrario mediante un fichero midi (.mid) con (1) una cadena de texto o de copyright larga), ... • http://marc.info/?l=bugtraq&m=105899759824008&w=2 •
CVSS: 9.8EPSS: 10%CPEs: 1EXPL: 0CVE-2002-0975
https://notcve.org/view.php?id=CVE-2002-0975
23 Aug 2002 — Buffer overflow in Microsoft DirectX Files Viewer ActiveX control (xweb.ocx) 2.0.6.15 and earlier allows remote attackers to execute arbitrary via a long File parameter. • http://marc.info/?l=bugtraq&m=102953851705859&w=2 •