Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4336

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4336
Last Modified 07 Mar 2011 09:58:23
Published 14 Aug 2007 02:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4336

Summary

Buffer overflow in the Live Picture Corporation DXSurface.LivePicture.FlashPix.1 (DirectTransform FlashPix) ActiveX control in DXTLIPI.DLL 6.0.2.827, as packaged in Microsoft DirectX Media 6.0 SDK, allows remote attackers to execute arbitrary code via a long SourceUrl property value.

Vulnerable Systems

Application

  • Microsoft Directx Media 6.0


References

CERT-VN - VU#466601

VUPEN - ADV-2007-2857

MILW0RM - 4279

SECUNIA - 26426

OSVDB - 36399

XF - directx-dxtlipi-bo(35970)

SECTRACK - 1018551

BID - 25279


Last Updated: 27 May 2016 10:45:50