Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1537

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-1537
Last Modified 02 Nov 2013 11:22:50
Published 11 Dec 2012 07:55:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-1537

Summary

Heap-based buffer overflow in DirectPlay in DirectX 9.0 through 11.1 in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012 allows remote attackers to execute arbitrary code via a crafted Office document, aka "DirectPlay Heap Overflow Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows Server 2003

  • Microsoft Windows Server 2008 -

  • Microsoft Windows Server 2008 R2

  • Microsoft Windows Vista -

  • Microsoft Windows Xp

Application

  • Microsoft Directx 10.0

  • Microsoft Directx 10.1

  • Microsoft Directx 11.0

  • Microsoft Directx 11.1

  • Microsoft Directx 9.0


References

MS - MS12-082

CERT - TA12-346A

Related Patches

MS12-082 Security Update for Windows Server 2008 (KB2770660)

MS12-082 Security Update for Windows Vista (KB2770660)

MS12-082 Security Update for Windows 7 (KB2770660)

MS12-082 Security Update for Windows Vista x64 (KB2770660)

MS12-082 Security Update for Windows Server 2008 x64 (KB2770660)

MS12-082 Security Update for Windows Server 2003 x64 (KB2770660)

MS12-082 Security Update for Windows Server 2008 R2 x64 (KB2770660)

MS12-082 Security Update for Windows 7 x64 (KB2770660)


Last Updated: 27 May 2016 10:53:45