Vulnerability Details : CVE-2007-3901
Public exploit exists!
Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft DirectX 7.0 through 10.0 allows remote attackers to execute arbitrary code via a crafted SAMI file.
Vulnerability category: OverflowExecute code
Products affected by CVE-2007-3901
- cpe:2.3:a:microsoft:directx:5.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:6.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:9.0a:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:7.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:7.0a:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:8.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:8.1a:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:8.1b:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:8.0a:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:8.2:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:7.1:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:8.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:9.0b:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:9.0c:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
- cpe:2.3:a:microsoft:directx:10.0:*:*:*:*:*:*:*When used together with: Microsoft » Windows 2000When used together with: Microsoft » Windows Vista
Exploit prediction scoring system (EPSS) score for CVE-2007-3901
78.15%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2007-3901
-
MS07-064 Microsoft DirectX DirectShow SAMI Buffer Overflow
Disclosure Date: 2007-12-11First seen: 2020-04-26exploit/windows/misc/ms07_064_samiThis module exploits a stack buffer overflow in the DirectShow Synchronized Accessible Media Interchanged (SAMI) parser in quartz.dll. This module has only been tested with Windows Media Player (6.4.09.1129) and DirectX 8.0. Authors: - MC <mc@metasploit.co
CVSS scores for CVE-2007-3901
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
8.5
|
HIGH | AV:N/AC:M/Au:S/C:C/I:C/A:C |
6.8
|
10.0
|
NIST |
CWE ids for CVE-2007-3901
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-3901
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/38721
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-064
-
https://www.exploit-db.com/exploits/4866
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4520
-
http://www.vupen.com/english/advisories/2007/4180
Vendor Advisory
-
http://www.securityfocus.com/archive/1/485268/100/0/threaded
-
http://www.kb.cert.org/vuls/id/804089
US Government Resource
-
http://www.iss.net/threats/280.html
-
http://www.securityfocus.com/bid/26789
Microsoft DirectX SAMI File Parsing Stack Buffer Overflow Vulnerability
-
http://www.us-cert.gov/cas/techalerts/TA07-345A.html
US Government Resource
-
http://www.securitytracker.com/id?1019073
-
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=632
Jump to