High severity8.8CISA KEVNVD Advisory· Published May 29, 2009· Updated Jun 16, 2026
CVE-2009-1537
CVE-2009-1537
Description
Unspecified vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted QuickTime media file, as exploited in the wild in May 2009, aka "DirectX NULL Byte Overwrite Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18cpe:2.3:a:microsoft:directx:7.0:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:microsoft:directx:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:7.0a:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:8.1b:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:9.0a:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:9.0b:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:directx:9.0c:*:*:*:*:*:*:*
- (no CPE)range: >=7.0, <=9.0c
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:*:sp2:x64:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*
- cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
14- www.microsoft.com/technet/security/advisory/971778.mspxnvdPatchVendor Advisory
- blogs.technet.com/msrc/archive/2009/05/28/microsoft-security-advisory-971778-vulnerability-in-microsoft-directshow-released.aspxnvdVendor Advisory
- blogs.technet.com/srd/archive/2009/05/28/new-vulnerability-in-quicktime-parsing.aspxnvdVendor Advisory
- secunia.com/advisories/35268nvdVendor Advisory
- www.vupen.com/english/advisories/2009/1445nvdVendor Advisory
- www.vupen.com/english/advisories/2009/1886nvdVendor Advisory
- docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028nvdVendor Advisory
- isc.sans.org/diary.htmlnvdNot Applicable
- osvdb.org/54797nvdBroken Link
- www.securityfocus.com/bid/35139nvdBroken Link
- www.securitytracker.com/idnvdBroken Link
- www.us-cert.gov/cas/techalerts/TA09-195A.htmlnvdUS Government Resource
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6237nvdBroken Link
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
4- Microsoft Warns of Two Actively Exploited Defender VulnerabilitiesThe Hacker News · May 21, 2026
- Microsoft Patches Exploited UnDefend and RedSun Defender Zero-DaysSecurityWeek · May 21, 2026
- Microsoft: 6 Actively-Exploited Flaws Added to CISA KEVVypr Intelligence · May 20, 2026
- CISA Adds Seven Known Exploited Vulnerabilities to CatalogCISA Alerts