OSVDB ID: 54797

Title: Microsoft DirectX DirectShow quartz.dll QuickTime NULL Byte Overwrite Arbitrary Code Execution

Info

Disclosure

May 28, 2009

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Commercial, Virus / Malware
Disclosure: Vendor Verified, Uncoordinated Disclosure, Discovered in the Wild
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Unknown or Incomplete

References

CVE ID: 2009-1537 (see also: NVD)
Bugtraq ID: 35139
Secunia Advisory ID: 35268
SCIP VulDB ID: 3979
Microsoft Knowledge Base Article: 971633 971778
Vendor Specific News/Changelog Entry: http://blogs.technet.com/msrc/archive/2009/05/28/microsoft-security-advisory-971778-vulnerability-in-microsoft-directshow-released.aspx
http://blogs.technet.com/srd/archive/2009/05/28/new-vulnerability-in-quicktime-parsing.aspx
Generic Exploit URL: http://d2sec.com/products.htm
http://www.saintcorporation.com/cgi-bin/exploit_info/microsoft_directx_quicktime
Other Advisory URL: http://isc.sans.org/diary.html?storyid=6481
http://www.symantec.com/connect/blogs/directshow-exploit-wild
Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/advisory/971778.mspx
Microsoft Security Bulletin: MS09-028

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/54797