DirectX 10.0 exploit can let attackers take over Windows Vista Computers
DirectX 10, the graphics technology exclusive to Windows Vista, has been applauded as an apex of the evolution for Windows' DirectX suite of multimedia application programming interfaces, but a critical security vulnerability in the APIs allows a potential attacker to completely take over the computer. Microsoft will make available on Dec 11th a patch for DirectX 10 in both 32-bit and 64-bit versions of Vista, plugging a hole that, in the eventuality of a successful exploit, allows for remote code execution on the affected system.
"As part of our regularly scheduled bulletin release, we’re currently planning to release. Six Microsoft Security Bulletins affecting Microsoft Windows with a Maximum Severity rating of Critical. One Microsoft Security Bulletin affecting Internet Explorer with a Maximum Severity rating of Critical. As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated. Finally, we are planning to release six high-priority, non-security updates on Microsoft Update and one high-priority, non-security update on Windows Update", revealed Bill Sisk, Response Communications Manager, Microsoft.
The DirectX critical vulnerability affects not only v10 of the APIs iteration, but also DirectX 7.0, DirectX 8.1 and DirectX 9.0c. And despite the claims coming from Sisk, Microsoft apparently plans only a total of three security bulletins labeled as Critical, and impacting Windows, DirectX, DirectShow, Windows Media Format Runtime, and Internet Explorer. In addition, the Redmond company will also serve four important security bulletins, all focused on the Windows operating system. As it is the case each month, the information was made public via the Microsoft Security Bulletin Advance Notification for December 2007.
Windows 2000, Windows XP, Windows 2003 and Windows Vista will all receive security patches tomorrow. At this point in time, Microsoft has failed to reveal if the security flaws are actively exploited in the wild, or if proof-of-concept code is available, putting end users at risk. However, the company did indicate that the majority of the vulnerabilities have been privately reported.
Windows Vista, DirectX, DX10, Vulnerability, Exploit, 32-bit, 64-bit, Microsoft
Source:? softpedia
No comment yet
-
Pingback from 1Windows Update Fail » DirectX 10.0 exploit can let attackers take over Windows Vista … says:January 1st, 2008 at 8:11 am
[...] DG wrote an interesting post today on DirectX 10.0 exploit can let attackers take over Windows Vista …Here’s a quick excerptFinally, we are planning to release six high-priority, non-security updates on Microsoft Update and one high-priority, non-security update on Windows Update“, revealed Bill Sisk, Response Communications Manager, Microsoft. … [...]
-
Pingback from 2Microsoft Windows Update » DirectX 10.0 exploit can let attackers take over Windows Vista … says:December 25th, 2007 at 6:44 am
[...] DG wrote an interesting post today on DirectX 10.0 exploit can let attackers take over Windows Vista …Here’s a quick excerptAs we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated. Finally, we are planning to release six high-priority, non-security updates on Microsoft Update and one high-priority, non-security update on … [...]
-
Pingback from 3DirectX 10.0 exploit can let attackers take over Windows Vista Computers — Software Freeware User Manuals says:December 11th, 2007 at 8:29 am
[...] plugging a hole that, in the eventuality of a successful exploit, allows for remote c source: DirectX 10.0 exploit can let attackers take over Windows Vista Computers, D Technology Weblog: Technology, Blogging, Tips, Tricks, Computer, Hardware, Software, Tutorials, [...]
Leave a Response
