      _________________________________________________________

          DePaul University Computer Security Response Team

                           C   S   R   T

                       <security@depaul.edu>
                   <http://security.depaul.edu/>
      _________________________________________________________


               Computer Security Vulnerability Alert

_____________________________________________________________________
00:31 -0500                                                2003-07-25


SUMMARY    Unchecked Buffer in DirectX

SEVERITY   Critical -- Immediate attention required.

PLATFORM   Microsoft DirectXŽ 5.2 on Windows 98
           Microsoft DirectX 6.1 on Windows 98 SE
           Microsoft DirectX 7.0a on Windows Millennium Edition
           Microsoft DirectX 7.0 on Windows 2000
           Microsoft DirectX 8.1 on Windows XP
           Microsoft DirectX 8.1 on Windows Server 2003
           Microsoft DirectX 9.0a installed on Windows ME
           Microsoft DirectX 9.0a installed on Windows 2000
           Microsoft DirectX 9.0a installed on Windows XP
           Microsoft DirectX 9.0a installed on Windows Server 2003
           Microsoft Windows NT 4.0 
               with either Windows Media Player 6.4 or
               Internet Explorer 6 Service Pack 1 installed
           Microsoft Windows NT 4.0, Terminal Server Edition
               with either Windows Media Player 6.4 or 
               Internet Explorer 6 Service Pack 1 installed

IMPACT     Unauthenticated, arbitrary code may be run on a victim
           host.

SCOPE      All University workstations and servers based on the
           above versions of the Microsoft operating enviroment.
 
DETAILS    DirectX is used by Windows applications, through standard
           application programming interface (API) calls, to
           display multimedia technologies.

           Two buffer overflows exist in functions used by
           DirectShow, and sub-technology of DirectX, that may allow
           an attacker to exploit this vulnerability through HTML,
           MIDI files, network shares and other attack vectors.

DAMAGE     Compromise of system privileges.

           CSRT recommends immediate upgrades of vulnerable hosts.
           
EXPLOIT    No exploits have been made public for these
           vulnerabilities.

ALERTID    CSRT2003072502

REVISION   

  Id: csrt-va2003072502.txt,v 1.1 2003/07/25 05:30:38 epancer Exp 

______________________________________________________________________

MORE
INFO

o Microsoft Security Bulletin MS03-030

<http://www.microsoft.com/technet/treeview/
              default.asp?url=/technet/security/bulletin/MS03-030.asp>

______________________________________________________________________
_____________________________END OF ALERT_____________________________