Buffer Overflow Vulnerability in Microsoft DirectX Files Viewer ActiveX Control
CVE-2002-0975

Currently unrated

Key Information:

Vendor
Microsoft
Status
Directx Files Viewer Control
Vendor
CVE Published:
24 September 2002

Summary

The Microsoft DirectX Files Viewer ActiveX control (xweb.ocx) versions 2.0.6.15 and earlier contain a buffer overflow flaw that permits remote attackers to execute arbitrary code. This occurs when a long File parameter is supplied, leading to potential system compromise. It is critical for users to ensure they are using an updated version of this software to mitigate the risk associated with this vulnerability.

References

http://marc.info/?l=bugtraq&m=102953851705859&w=2
mailing-listx_refsource_BUGTRAQ
http://www.iss.net/security_center/static/9877.php
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/5489
vdb-entryx_refsource_BID

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2002-0975 : Buffer Overflow Vulnerability in Microsoft DirectX Files Viewer ActiveX Control | SecurityVulnerability.io