DirectX Movie Parser Filter Vulnerability in Microsoft Products
CVE-2009-1539

Currently unrated

Key Information:

Vendor
Microsoft
Status
Directx
Windows 2000
Vendor
CVE Published:
15 July 2009

Summary

A vulnerability exists in the QuickTime Movie Parser Filter located in quartz.dll in Microsoft DirectX, which fails to correctly validate size fields in QuickTime media files. This flaw affects several versions of DirectX, including 7.0 through 9.0c, and can be exploited by remote attackers using specially crafted files. Successful exploitation may allow these attackers to execute arbitrary code on affected systems, potentially leading to unauthorized access or further compromise of the affected environment.

References

https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS
http://osvdb.org/55845
vdb-entryx_refsource_OSVDB
https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL

EPSS Score

52% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2009-1539 : DirectX Movie Parser Filter Vulnerability in Microsoft Products | SecurityVulnerability.io