Oval Definition:oval:org.mitre.oval:def:4520
Revision Date:2013-04-15Version:44
Title:Microsoft DirectX Code Execution Vulnerability
Description:Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft DirectX 7.0 through 10.0 allows remote attackers to execute arbitrary code via a crafted SAMI file.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-3901
Platform(s):Microsoft Windows 2000
Product(s):DirectX
Definition Synopsis
  • DirectX 7 on Windows 2000 SP4
  • Microsoft Windows 2000 SP4 or later is installed
  • AND DirectX 7.0x Installed
  • AND the version of Quartz.dll is less than 6.1.9.733
  • OR DirectX 8.1 on Windows 2000 SP4
  • Microsoft Windows 2000 SP4 or later is installed
  • AND DirectX 8.1 Installed
  • AND the version of Quartz.dll is less than 6.3.1.890
    • BACK