Exploiting MS Advisory 971778 - QuickTime DirectShow Vulnerability
By secgeeks - Posted on July 1st, 2009
196
vote
On May 28th, 2009 Microsoft released MS Security Advisory 971778 titled Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution. This vulnerability should be considered high-risk as it allows for remote code execution through a browser using the Windows Media Player ActiveX control. In this blog post I provide a brief walk through of details of this issue and touch upon how it can be exploited in a reliable fashion.
This vulnerability manifests itself within the quartz.dll module located within the \Windows\System32 directory. This DLL is part of Microsoft's DirectShow multimedia framework and is responsible for parsing various media formats and handing data off to appropriate installable compressors and decompressors. Frequently, vulnerabilities in media formats exist within these installable compressors (see TPTI-09-01 and TPTI-09-02 for recent examples), however, in this case the problematic code is located within quartz itself. It should be noted that Quicktime does NOT need to be installed for this issue to be exposed.
Continue reading here....
Bookmark/Search this post with:
Similar entries
- Click Carefully: New DirectX Exploit in the Wild
- Details on Dino’s QuickTime Advisory (With Code Snippet)
- Microsoft Warns of Attacks on PowerPoint Vulnerability
- IE users beware: Zero-day attacks hit Microsoft Video ActiveX Control
- How the IIS vulnerability (Security Advisory 971492) affects Exchange 2003
Recent comments
6 weeks 4 days ago
49 weeks 2 days ago
50 weeks 3 days ago
1 year 3 days ago
1 year 4 days ago
1 year 4 days ago
1 year 4 days ago
1 year 6 weeks ago
1 year 14 weeks ago
1 year 16 weeks ago