=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2007/VULN505
_____________________________________________________________________

DATE                      : 12/12/2007

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Windows running DirectX.

======================================================================
http://www.microsoft.com/technet/security/bulletin/MS07-064.mspx
______________________________________________________________________

Microsoft Security Bulletin MS07-064
Critical Vulnerabilities in DirectX Could Allow Remote Code Execution 
(941568)

This critical security update resolves two privately reported
vulnerabilities in Microsoft DirectX. These vulnerabilities could allow
code execution if a user opened a specially crafted file used for
streaming media in DirectX. If a user is logged on with administrative
user rights, an attacker who successfully exploited this vulnerability
could take complete control of an affected system. An attacker could
then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to
have fewer user rights on the system could be less impacted than users
who operate with administrative user rights.


Affected Software

    DirectX 7.0
    DirectX 8.1
    DirectX 9.0c
    DirectX 10.0


Vulnerability Information

Microsoft DirectX Code Execution Vulnerability Parsing SAMI Files
CVE-2007-3901

A remote code execution vulnerability exists in the way DirectX handles
supported format files. This vulnerability could allow code execution if
a user opened a specially crafted file. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An
attacker could then install programs; view, change, or delete data; or
create new accounts with full user rights. Users whose accounts are
configured to have fewer user rights on the system could be less
impacted than users who operate with administrative user rights.
	
Microsoft DirectX Code Execution Vulnerability Parsing WAV and AVI Files
CVE-2007-3895

A remote code execution vulnerability exists in the way DirectX handles
WAV and AVI format files. This vulnerability could allow code execution
if a user visits a specially crafted Web site or opens an e-mail message
with specially crafted content. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An
attacker could then install programs; view, change, or delete data; or
create new accounts with full user rights. Users whose accounts are
configured to have fewer user rights on the system could be less
impacted than users who operate with administrative user rights.

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================