exploits , vulnerabilities , articles , Microsoft DirectX MJPEG Video Streaming Remote Code Execution Vulnerability

Title	Microsoft DirectX MJPEG Video Streaming Remote Code Execution Vulnerability
Published	2008-06-10-12:00AM
Updated	2008-06-10-12:00AM
Class	Input Validation Error
CVE	CVE-2008-0011
Remote	Yes
Local	No
Credit	Mark Dowd, IBM Internet Security Systems X-Force
Vulnerable	Microsoft DirectX 9.0b Microsoft DirectX 9.0 c Microsoft DirectX 9.0 a Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional Microsoft Windows 2000 Professional Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server Microsoft Windows 2000 Server Microsoft Windows ME Microsoft Windows ME Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Datacenter Edition Itanium 0 Microsoft Windows Server 2003 Datacenter Edition Itanium 0 Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Enterprise Edition Itanium 0 Microsoft Windows Server 2003 Enterprise Edition Itanium 0 Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows XP 0 Microsoft Windows XP 64bit Edition SP1 Microsoft Windows XP 64bit Edition SP1 Microsoft Windows XP 64bit Edition Microsoft Windows XP 64bit Edition Microsoft Windows XP Home SP1 Microsoft Windows XP Home SP1 Microsoft Windows XP Home Microsoft Windows XP Home Microsoft Windows XP Media Center Edition Microsoft Windows XP Media Center Edition Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional Microsoft Windows XP Professional Microsoft DirectX 9.0 Microsoft DirectX 8.1 b Microsoft DirectX 8.1 a Microsoft DirectX 8.1 Microsoft DirectX 10.0 Microsoft Windows Server 2008 Datacenter Edition 0 Microsoft Windows Server 2008 Enterprise Edition 0 Microsoft Windows Server 2008 for 32bit Systems 0 Microsoft Windows Server 2008 for Itaniumbased Systems 0 Microsoft Windows Server 2008 for x64based Systems 0 Microsoft Windows Vista Ultimate SP1 Microsoft Windows Vista Ultimate Microsoft Windows Vista SP1 Microsoft Windows Vista Home Premium SP1 Microsoft Windows Vista Home Premium Microsoft Windows Vista Home Basic SP1 Microsoft Windows Vista Home Basic Microsoft Windows Vista Enterprise SP1 Microsoft Windows Vista Enterprise Microsoft Windows Vista Business SP1 Microsoft Windows Vista Business Microsoft Windows Vista 0 Microsoft Windows Vista Business 64bit edition SP1 Microsoft Windows Vista Business 64bit edition 0 Microsoft Windows Vista Enterprise 64bit edition SP1 Microsoft Windows Vista Enterprise 64bit edition 0 Microsoft Windows Vista Home Basic 64bit edition SP1 Microsoft Windows Vista Home Basic 64bit edition 0 Microsoft Windows Vista Home Premium 64bit edition SP1 Microsoft Windows Vista Home Premium 64bit edition 0 Microsoft Windows Vista Ultimate 64bit edition SP1 Microsoft Windows Vista Ultimate 64bit edition 0 Microsoft Windows Vista x64 Edition SP1 Microsoft Windows Vista x64 Edition 0
Not Vulnerable
Code	Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: content@securitydot.net.
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
2009-12-14 Oracle E-Business Suite Multiple Remote Vulnerabilities