Neowin.net - DirectShow Security Fix for DirectX 9.0 and DirectX 9.0a

DirectShow Security Fix for DirectX 9.0 and DirectX 9.0a

Posted by Daniel Fleshbourne on 24 July 2003 - 06:40 · 1 comment & 266 views

DirectX consists of a set of low-level Application Programming Interfaces (APIs) used by Windows programs for multimedia support. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation and rendering.

There are two buffer overruns with identical effects in the function used by DirectShow to check parameters in a Musical Instrument Digital Interface (MIDI) file. A security vulnerability results because it would be possible for a malicious user to attempt to exploit these flaws and execute code in the security context of the logged on user.

Download: Microsoft DirectX 9.0a: All Windows versions

Download: Patch for Previous Versions of DirectX

Download: NT 4.0 Security Fix for DirectX Media 6.0

View: Security Bulletin

Bugfixes

Unnecessary taskbar button added for Access XP
Excel XP issues
PowerPoint XP issues
Passing arguments to script files (.vbs, etc) doesn't work with UltraMon shortcuts and hotkeys
CALnet doesn't work correctly or not at all when started using an UltraMon shortcut
Display settings: identify monitors doesn't work correctly if mirroring is active
Nothing happens when trying to open advanced display settings for a monitor which has no advanced settings
No custom ATI tabs added to advanced display settings for some ATI video cards
UltraEdit context menus vanish immediately when mirroring is active
When stored settings for a monitor are no longer valid, mirror settings dialog crashes and mirroring doesn't work correctly
Setup: when manually entering an installation directory without using the Browse dialog, UltraMon gets installed in the default directory on Windows 98/Me
Setup: issues with the German version

Hide additional information

About the Author
Full name: Daniel Fleshbourne
Forum name: Daniel
Contact: via forum PM
Submissions: Normal · Headline

Total votes: 0

Bookmark on del.icio.us

Advertisement

#1 Posted by Jon on 24 Jul 2003 - 10:59: Hacking with midi files, heh thats quite amusing

[1]

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Scroll to the Top