Microsoft DirectX SAMI File Parsing Code Execution Vulnerability

  Severity: HIGH
  CVE Identifier: CVE-2007-3901,MS07-064
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft DirectX 7.0 through 10.0 allows remote attackers to execute arbitrary code via a crafted SAMI file.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1001249
  Trend Micro Deep Security DPI Rule Name: 1001249 - Microsoft DirectX Parsing SAMI File Code Execution Vulnerability