QwikSec

Security Database

CVE

CWE

Training

CVE-2006-4183

Published: Jul 18, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Heap-based buffer overflow in Microsoft DirectX SDK (February 2006) and probably earlier, including 9.0c End User Runtimes, allows context-dependent attackers to execute arbitrary code via a crafted Targa file with a run-length-encoding (RLE) compression that produces more data than expected when decoding.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=52

x_refsource_MISC

20070718 Microsoft DirectX RLE Compressed Targa Image File Heap Overflow Vulnerability

third-party-advisory

x_refsource_IDEFENSE

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_BID

directx-targa-bo(35492)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

20070718 [Reversemode Advisory] Microsoft DirectX RLE Compressed Targa Image File Heap Overflow

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.