Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft / Patches and Vulnerabilities

Patches and Vulnerabilities

XP SP3 and Vista SP1: DirectX 9 and DirectX 10 Patches Updated

On July 16, 2008

By Marius Oiaga, Technology News Editor

17th of July 2008, 15:52 GMT

Adjust text size:


Windows Update
Enlarge picture
Two security bulletins, from December 2007 and from June 2008 respectively, affecting the DirectX components of a wide range of Windows operating systems including Windows Vista Service Pack 1 and Windows XP Service Pack 3, have been updated. According to Microsoft, the modifications were designed to simply add DirectX 9.0a on the list of impacted DirectX versions. The pair of patches are set up to resolve no less than four security vulnerabilities and both security bulletins are labeled with the maximum severity rating from Microsoft: Critical.

Released initially on December 11, 2007, Security Bulletin MS07-064 plugs security holes in DirectX 7.0, 8.1, 9.0 and 10.0 running on Windows 2000, Windows XP SP2, Windows Server 2003 and Windows Vista RTM. One of the security issues is related to a DirectX Code Execution Vulnerability Parsing SAMI Files while the remaining one deals with a DirectX Code Execution Vulnerability Parsing WAV and AVI Files.

"This critical security update resolves two privately reported vulnerabilities in Microsoft DirectX. These vulnerabilities could allow code execution if a user opened a specially crafted file used for streaming media in DirectX. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights," Microsoft informed.

As far as Security Bulletin MS08-033 is concerned, Microsoft also patched vulnerabilities in all the DirectX and Windows versions mentioned above, but also in XP SP3, Windows Vista SP1, and Windows Server 2008. The company resolved a MJPEG Decoder Vulnerability and a Format Parsing Vulnerability. "This security update resolves two privately reported vulnerabilities in Microsoft DirectX that could allow remote code execution if a user opens a specially crafted media file," the Redmond giant stated.

TAGS:

 DirectX 9 | DirectX 10 | Windows Vista SP1 | Windows XP SP3


Rating:
Very Good (4.0/5) 2 vote(s) so far    

Read by 4,013 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Microsoft Warns of New Attacks Targeting ActiveX

Mozilla: Firefox Is Superior to IE, Opera and Safari

Microsoft Plugs Fresh Round of Vista SP1 and XP SP3 Holes

Firefox 3.0.1 Drops Next Week

Vista Security Policy Gets Its Own Website

Firefox 3.1 Shiretoko Alpha 1 Available on July 21

Download Firefox 2.0.0.16 - Firefox 2.0 One Step Closer to Death

Firefox 3.0.1 Drops Tomorrow, July 16, 2008

Firefox 3.0.1 Is Available for Download

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive