exploits , vulnerabilities , articles , Microsoft DirectX MJPEG Video Streaming Remote Code Execution Vulnerability

Title	Microsoft DirectX MJPEG Video Streaming Remote Code Execution Vulnerability
Published	2008-06-10-12:00AM
Updated	2008-06-10-12:00AM
Class	Input Validation Error
CVE	CVE-2008-0011
Remote	Yes
Local	No
Credit	Mark Dowd, IBM Internet Security Systems X-Force
Vulnerable	Microsoft DirectX 9.0b Microsoft DirectX 9.0 c Microsoft DirectX 9.0 a Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional Microsoft Windows 2000 Professional Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server Microsoft Windows 2000 Server Microsoft Windows ME Microsoft Windows ME Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Datacenter Edition Itanium 0 Microsoft Windows Server 2003 Datacenter Edition Itanium 0 Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Enterprise Edition Itanium 0 Microsoft Windows Server 2003 Enterprise Edition Itanium 0 Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows XP 0 Microsoft Windows XP 64bit Edition SP1 Microsoft Windows XP 64bit Edition SP1 Microsoft Windows XP 64bit Edition Microsoft Windows XP 64bit Edition Microsoft Windows XP Home SP1 Microsoft Windows XP Home SP1 Microsoft Windows XP Home Microsoft Windows XP Home Microsoft Windows XP Media Center Edition Microsoft Windows XP Media Center Edition Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional Microsoft Windows XP Professional Microsoft DirectX 9.0 Microsoft DirectX 8.1 b Microsoft DirectX 8.1 a Microsoft DirectX 8.1 Microsoft DirectX 10.0 Microsoft Windows Server 2008 Datacenter Edition 0 Microsoft Windows Server 2008 Enterprise Edition 0 Microsoft Windows Server 2008 for 32bit Systems 0 Microsoft Windows Server 2008 for Itaniumbased Systems 0 Microsoft Windows Server 2008 for x64based Systems 0 Microsoft Windows Vista Ultimate SP1 Microsoft Windows Vista Ultimate Microsoft Windows Vista SP1 Microsoft Windows Vista Home Premium SP1 Microsoft Windows Vista Home Premium Microsoft Windows Vista Home Basic SP1 Microsoft Windows Vista Home Basic Microsoft Windows Vista Enterprise SP1 Microsoft Windows Vista Enterprise Microsoft Windows Vista Business SP1 Microsoft Windows Vista Business Microsoft Windows Vista 0 Microsoft Windows Vista Business 64bit edition SP1 Microsoft Windows Vista Business 64bit edition 0 Microsoft Windows Vista Enterprise 64bit edition SP1 Microsoft Windows Vista Enterprise 64bit edition 0 Microsoft Windows Vista Home Basic 64bit edition SP1 Microsoft Windows Vista Home Basic 64bit edition 0 Microsoft Windows Vista Home Premium 64bit edition SP1 Microsoft Windows Vista Home Premium 64bit edition 0 Microsoft Windows Vista Ultimate 64bit edition SP1 Microsoft Windows Vista Ultimate 64bit edition 0 Microsoft Windows Vista x64 Edition SP1 Microsoft Windows Vista x64 Edition 0
Not Vulnerable
Code	Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: content@securitydot.net.
TXT

Vulnerabilities - newest 10 RSS | More

2008-10-10 CUPS Multiple Heap Based Buffer Overflow Vulnerabilities
2008-10-10 Sun Java System Web Proxy Server FTP Subsytem Heap Based Buffer Overflow Vulnerability
2008-10-09 ModSecurity Transformation Caching Security Bypass Vulnerability
2008-10-09 DATAC RealWin SCADA Server Remote Stack Buffer Overflow Vulnerability
2008-10-09 Avaya Communication Manager Web Administration Multiple Security Vulnerabilities
2008-10-09 HP System Management Homepage (SMH) for Linux and Windows Cross Site Scripting Vulnerability
2008-10-09 YaCy Multiple Unspecified Vulnerabilities
2008-10-09 Opera Cached Java Applet Security Bypass Vulnerability
2008-10-09 WOW Raid Manager Unspecified Cross Site Scripting Vulnerability
2008-10-09 Drupal EveryBlog Module Multiple Unspecified Vulnerabilities