Microsoft DirectX RLE Compressed Targa Image Processing Buffer Overflow

2015年7月21日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 中

CVE識別番号: CVE-2006-4183

概要

Heap-based buffer overflow in Microsoft DirectX SDK (February 2006) and probably earlier, including 9.0c End User Runtimes, allows context-dependent attackers to execute arbitrary code via a crafted Targa file with a run-length-encoding (RLE) compression that produces more data than expected when decoding.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1001129

Trend Micro Deep Security DPI Rule Name: 1001129 - Microsoft DirectX RLE Compressed Targa Image Processing Buffer Overflow

影響を受けるソフトウェア

Microsoft DirectX SDK February 2006