Oval Definition:	oval:org.mitre.oval:def:1149
Revision Date: 2016-02-19 Version: 47 Title: Server 2003,SP1 DirectShow Malicious avi File Vulnerability Description: QUARTZ.DLL in Microsoft Windows Media Player 9 allows remote attackers to write a null byte to arbitrary memory via an AVI file with a crafted strn element with a modified length value. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2128 Platform(s): Microsoft Windows Server 2003 Product(s): DirectX Definition Synopsis DirectX packaged with Windows Server 2003,SP1 has DirectShow Vulnerability Windows Server 2003 is installed AND Win2K/XP/2003 is patched AND the version of Quartz.dll is greater than or equal to 6.5.3790.0 AND the version of Quartz.dll is less than 6.5.3790.2519 OR Standalone DirectX 8 has DirectShow Vulnerability DirectX 8.x Installed AND the version of Quartz.dll is less than 6.3.1.889 OR Standalone DirectX 9 has DirectShow Vulnerability DirectX 9.0x Installed AND the version of Quartz.dll is less than 6.3.1.889
BACK