MS.DirectX.SAMI.File.Parse.Buffer.Overflow

description-logoDescription

This indicates an attempt to exploit a vulnerability in DirectShow in Mircrosoft Windows.
This vulnerability is caused by an input validation error in DirectShow that occurs when handling malformed Synchronized Accessible Media Interchange (SAMI) files. It allows remote attackers to execute arbitrary code via a crafted SAMI file.

affected-products-logoAffected Products

DirectX 8.0 on Microsoft Windows 2000 Service Pack 4
DirectX 9.0 on Microsoft Windows 2000 Service Pack 4
DirectShow on Windows 2000 Service Pack 4
DirectShow on Windows XP Service Pack 2
DirectShow on Windows XP Professional x64 Edition
DirectShow on Windows XP Professional x64 Edition Service Pack 2
DirectShow on Windows Server 2003 Service Pack 1
DirectShow on Windows Server 2003 Service Pack 2
DirectShow on Windows Server 2003 with SP1 for Itanium-based Systems
DirectShow on Windows Server 2003 with SP2 for Itanium-based Systems
DirectShow on Windows Server 2003 x64 Edition
DirectShow on Windows Server 2003 x64 Edition Service Pack 2
DirectShow on Windows Vista
DirectShow on Windows Vista x64 Edition

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's web site for the suggested workaround:
http://www.microsoft.com/technet/security/bulletin/MS07-064.mspx

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-10-29 16.952 Name:MS.
Windows.
DirectX.
SAMI.
File.
Parse.
Buffer.
Overflow:MS.
DirectX.
SAMI.
File.
Parse.
Buffer.
Overflow