Vulnerabilities > CVE-2003-0346 - Unspecified vulnerability in Microsoft Directx

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
microsoft
nessus
NVD
Published: 2003-08-27
Updated: 2018-10-12

Summary

Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow.

Vulnerable Configurations

Part Description Count
Application
Microsoft
6

Nessus

NASL familyWindows : Microsoft Bulletins
NASL idSMB_NT_MS03-030.NASL
descriptionThe remote host is running a version of Windows with a version of DirectX that is vulnerable to a buffer overflow attack involving the module that handles MIDI files. To exploit this flaw, an attacker needs to craft a rogue MIDI file and send it to a user of this computer. When the user attempts to read the file, it will trigger the buffer overflow condition and the attacker may gain a shell on this host.
last seen2020-06-01
modified2020-06-02
plugin id11803
published2003-07-23
reporterThis script is Copyright (C) 2003-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/11803
titleMS03-030: DirectX MIDI Overflow (819696)

Oval

  • accepted2013-04-15T04:00:06.203-04:00
    classvulnerability
    contributors
    • nameRobert L. Hollis
      organizationThreatGuard, Inc.
    • nameMatthew Wojcik
      organizationThe MITRE Corporation
    • nameRobert L. Hollis
      organizationThreatGuard, Inc.
    • nameJeff Ito
      organizationSecure Elements, Inc.
    • nameDragos Prisaca
      organizationG2, Inc.
    descriptionMultiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow.
    familywindows
    idoval:org.mitre.oval:def:1095
    statusaccepted
    submitted2005-10-12T12:00:00.000-04:00
    titleDirectX 8 DirectShow Malicious MIDI File Vulnerability
    version7
  • accepted2007-09-27T08:57:38.999-04:00
    classvulnerability
    contributors
    • nameRobert L. Hollis
      organizationThreatGuard, Inc.
    • nameMatthew Wojcik
      organizationThe MITRE Corporation
    • nameJeff Ito
      organizationSecure Elements, Inc.
    descriptionMultiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow.
    familywindows
    idoval:org.mitre.oval:def:1104
    statusaccepted
    submitted2005-10-12T12:00:00.000-04:00
    titleDirectX 9 DirectShow Malicious MIDI File Vulnerability
    version4
  • accepted2008-03-24T04:00:22.463-04:00
    classvulnerability
    contributors
    • nameChristine Walzer
      organizationThe MITRE Corporation
    • nameChristine Walzer
      organizationThe MITRE Corporation
    • nameJonathan Baker
      organizationThe MITRE Corporation
    definition_extensions
    commentMicrosoft Windows NT is installed
    ovaloval:org.mitre.oval:def:36
    descriptionMultiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow.
    familywindows
    idoval:org.mitre.oval:def:218
    statusaccepted
    submitted2004-11-02T12:00:00.000-04:00
    titleInteger Overflows in Windows NT DirectX MIDI Library (QUARTZ.DLL)
    version73

References