CVE-2012-1537 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2012-1537

Modified

More Info Official Page

Source-cve@mitre.org

Published At-12 Dec, 2012 | 00:55

Updated At-29 Apr, 2026 | 01:13

Heap-based buffer overflow in DirectPlay in DirectX 9.0 through 11.1 in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012 allows remote attackers to execute arbitrary code via a crafted Office document, aka "DirectPlay Heap Overflow Vulnerability."

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C

Type: Primary

Version: 2.0

Base score: 9.3

Base severity: HIGH

Vector:

AV:N/AC:M/Au:N/C:C/I:C/A:C

CPE Matches

Microsoft Corporation

>>directx>>10.1

cpe:2.3:a:microsoft:directx:10.1:*:*:*:*:*:*:*

Microsoft Corporation

>>windows_server_2008>>-

cpe:2.3:o:microsoft:windows_server_2008:-:sp1:*:*:*:*:*:*

Microsoft Corporation

>>windows_vista>>-

cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Microsoft Corporation

>>directx>>11.0

cpe:2.3:a:microsoft:directx:11.0:*:*:*:*:*:*:*

Microsoft Corporation

>>directx>>11.1

cpe:2.3:a:microsoft:directx:11.1:*:*:*:*:*:*:*

Microsoft Corporation

>>windows_server_2008>>-

cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*

Microsoft Corporation

>>windows_server_2008>>r2

cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:*:*

Microsoft Corporation

>>windows_server_2008>>r2

cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*

Microsoft Corporation

>>directx>>9.0

cpe:2.3:a:microsoft:directx:9.0:*:*:*:*:*:*:*

Microsoft Corporation

>>windows_server_2003>>*

cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*

Microsoft Corporation

>>windows_xp>>*

cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*

Microsoft Corporation

>>windows_xp>>*

cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

Microsoft Corporation

>>directx>>10.0

cpe:2.3:a:microsoft:directx:10.0:*:*:*:*:*:*:*

Microsoft Corporation

>>windows_server_2008>>-

cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*

Microsoft Corporation

>>windows_vista>>-

cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-119	Primary	nvd@nist.gov

CWE ID: CWE-119

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.us-cert.gov/cas/techalerts/TA12-346A.html	cve@mitre.org	US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-082	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16086	cve@mitre.org	N/A
http://www.us-cert.gov/cas/techalerts/TA12-346A.html	af854a3a-2127-422b-91ae-364da2661108	US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-082	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16086	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://www.us-cert.gov/cas/techalerts/TA12-346A.html

Source: cve@mitre.org

Resource:

US Government Resource

Hyperlink: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-082

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16086

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.us-cert.gov/cas/techalerts/TA12-346A.html

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

US Government Resource

Hyperlink: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-082

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16086

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A