Microsoft Security Bulletin MS03-030 - 819696

From: Jerry Bryant [MSFT] (jbryant_at_online.microsoft.com)
Date: 07/24/03 

Date: Wed, 23 Jul 2003 15:31:02 -0700

Title: Unchecked Buffer in DirectX Could Enable System Compromise (819696)
Date: July 23, 2003
Software:
Microsoft DirectX® 5.2 on Windows 98
Microsoft DirectX 6.1 on Windows 98 SE
Microsoft DirectX 7.0a on Windows Millennium Edition
Microsoft DirectX 7.0 on Windows 2000
Microsoft DirectX 8.1 on Windows XP
Microsoft DirectX 8.1 on Windows Server 2003
Microsoft DirectX 9.0a when installed on Windows Millennium Edition
Microsoft DirectX 9.0a when installed on Windows 2000
Microsoft DirectX 9.0a when installed on Windows XP
Microsoft DirectX 9.0a when installed on Windows Server 2003
Microsoft Windows NT 4.0 with either Windows Media Player 6.4 or Internet
Explorer 6 Service Pack 1 installed.
Microsoft Windows NT 4.0, Terminal Server Edition with either Windows Media
Player 6.4 or Internet Explorer 6 Service Pack 1 installed.
Impact: Allow an attacker to execute code on a user's system
Maximum Severity Rating: Critical
Bulletin: MS03-030

The Microsoft Security Response Center has released Microsoft Security
Bulletin MS03-030

What Is It?
The Microsoft Security Response Center has released Microsoft Security
Bulletin MS03-030 which concerns a vulnerability in the products listed
above. Customers are advised to review the information in the bulletin,
test and deploy the patch immediately in their environments, if applicable.

More information is now available at
http://www.microsoft.com/technet/security/bulletin/MS03-030.asp

If you have any questions regarding the patch or its implementation after
reading the above listed bulletin you should contact Product Support
Services in the United States at 1-866-PCSafety (1-866-727-2338).
International customers should contact their local subsidiary. 

-- 
Regards,
Jerry Bryant - MCSE, MCDBA
Microsoft IT Communities
Get Secure! www.microsoft.com/security
This posting is provided "AS IS" with no warranties, and confers no rights.

Relevant Pages

  • Microsoft Security Bulletin MS03-030 - 819696
    ... Microsoft DirectX 6.1 on Windows 98 SE ... Microsoft DirectX 7.0a on Windows Millennium Edition ... The Microsoft Security Response Center has released Microsoft Security ... Bulletin MS03-030 which concerns a vulnerability in the products listed ...
    (microsoft.public.security)
  • Microsoft Security Bulletin MS03-030 - 819696
    ... Microsoft DirectX 6.1 on Windows 98 SE ... Microsoft DirectX 7.0a on Windows Millennium Edition ... The Microsoft Security Response Center has released Microsoft Security ... Bulletin MS03-030 which concerns a vulnerability in the products listed ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Microsoft Security Bulletin MS03-030 - 819696
    ... bulletin, you must upgrade to DirectX 9.0b or if you have ... DirectX 9.0a, there is a patch for that. ... >a Windows 98 SE system is not affected? ... >>Microsoft DirectX 7.0a on Windows Millennium Edition ...
    (microsoft.public.security)
  • Re: Microsoft Security Bulletin MS03-030 - 819696
    ... Do I unerstand this bulletin correctly that DirectX 8.1 on ... >Microsoft DirectX 7.0a on Windows Millennium Edition ...
    (microsoft.public.security)
  • Alert: Microsoft Security Bulletin - MS03-030
    ... Microsoft DirectX 6.1 on Windows 98 SE ... Microsoft DirectX 7.0a on Windows Millennium Edition ... The combination of the above means that on Windows Server 2003 an administrator browsing only to trusted sites should be safe from this vulnerability. ... Summer's Hottest Certification Just Got HOTTER! ...
    (NT-Bugtraq)