CVE-2009-1537: CVE-2009-1537

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1537

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Unspecified vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted QuickTime media file, as exploited in the wild in May 2009, aka "DirectX NULL Byte Overwrite Vulnerability."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft DirectX QuickTime媒体文件解析代码执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft DirectX是Windows操作系统中的一项功能，流媒体在玩游戏或观看视频时通过这个功能支持图形和声音。 DirectX的DirectShow组件(quartz.dll)在解析畸形的QuickTime媒体文件时存在错误，用户受骗打开了恶意的媒体文件就会导致执行任意代码。由于用户可能在浏览器中安装媒体播放插件，因此访问恶意网页就足以导致播放QuickTime文件，触发Quartz.dll中的漏洞。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1537

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1537

Please Login to view more intelligence information

http://www.microsoft.com/technet/security/advisory/971778.mspxx_refsource_CONFIRM
http://blogs.technet.com/msrc/archive/2009/05/28/microsoft-security-advisory-971778-vulnerability-in-microsoft-directshow-released.aspxx_refsource_CONFIRM
http://isc.sans.org/diary.html?storyid=6481x_refsource_MISC
http://blogs.technet.com/srd/archive/2009/05/28/new-vulnerability-in-quicktime-parsing.aspxx_refsource_CONFIRM
http://osvdb.org/54797vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/35268third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/35139vdb-entryx_refsource_BID
http://www.securitytracker.com/id?1022299vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028vendor-advisoryx_refsource_MS
http://www.us-cert.gov/cas/techalerts/TA09-195A.htmlthird-party-advisoryx_refsource_CERT
http://www.vupen.com/english/advisories/2009/1445vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2009/1886vdb-entryx_refsource_VUPEN
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6237vdb-entrysignaturex_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2009-1537

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2009-1537

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2009-1537

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1537

III. Intelligence Information for CVE-2009-1537

New Vulnerabilities

V. Comments for CVE-2009-1537

Leave a comment