CVE-2007-3895

CWE-119Buffer Overflow3 documents3 sources
Severity
9.3CRITICAL
EPSS
62.3%
top 1.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Directx
Timeline
PublishedDec 12
Latest updateMay 1

Description

Buffer overflow in Microsoft DirectShow in Microsoft DirectX 7.0 through 10.0 allows remote attackers to execute arbitrary code via a crafted (1) WAV or (2) AVI file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/directx4 versions+3

Patches

Patch: secunia.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-5qg2-6cq9-52q8: Buffer overflow in Microsoft DirectShow in Microsoft DirectX 72022-05-01
CVEList
CVE-2007-3895: Buffer overflow in Microsoft DirectShow in Microsoft DirectX 72007-12-12
CVE-2007-3895 (CRITICAL CVSS 9.3) | Buffer overflow in Microsoft Direct | cvebase.io