Stack-Based Buffer Overflow in Microsoft DirectX 7.0 and 8.1 on Windows 2000 SP4
CVE-2008-1444

Currently unrated

Key Information:

Vendor: Microsoft
Status: Directx
Vendor: CVE Published:; 12 June 2008

Summary

A stack-based buffer overflow was identified in Microsoft DirectX versions 7.0 and 8.1, particularly impacting systems running Windows 2000 SP4. This vulnerability arises when the software processes Synchronized Accessible Media Interchange (SAMI) files with specially crafted parameters for the Class Name variable. Successful exploitation allows remote attackers to execute arbitrary code on an affected system, posing significant security risks to users.

References

http://www.vupen.com/english/advisories/2008/1780

vdb-entryx_refsource_VUPEN

http://securityreason.com/securityalert/3937

third-party-advisoryx_refsource_SREASON

http://securitytracker.com/id?1020223

vdb-entryx_refsource_SECTRACK

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 12, 2008
Vulnerability Reserved
Mar 21, 2008