Security Home > General Software

Unchecked Buffer in DirectX New

A security vulnerability exists in all versions of DirectX prior to v8.1b that due to an unchecked buffer could allow an attacker to execute code on a user's system.


DirectX consists of a set of low-level Application Programming Interfaces (APIs) that are used by Windows programs for multimedia support. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation, and rendering.

There are two buffer overruns with identical effects in the function used by DirectShow to check parameters in a Musical Instrument Digital Interface (MIDI) file. A security vulnerability results because it could be possible for a malicious user to attempt to exploit these flaws and execute code in the security context of the logged-on user.

An attacker could seek to exploit this vulnerability by creating a specially crafted MIDI file designed to exploit this vulnerability and then host it on a Web site or on a network share, or send it by using an HTML-based e-mail. In the case where the file was hosted on a Web site or network share, the user would need to open the specially crafted file. If the file was embedded in a page the vulnerability could be exploited when a user visited the Web page. In the HTML-based e-mail case, the vulnerability could be exploited when a user opened or previewed the HTML-based e-mail. A successful attack could cause DirectShow, or an application making use of DirectShow, to fail. A successful attack could also cause an attacker’s code to run on the user’s computer in the security context of the user.

Affected Products

  • All versions of Microsoft DirectX prior to version 8.1b



Further Details

Source: Microsoft Corporation

Reference: Microsoft Corporation

Updated: July 23, 2003

>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<