CVSS: 9.3EPSS: 6%CPEs: 3EXPL: 2CVE-2007-6402 – Media Player Classic 6.4.9 - '.MP4' File Stack Overflow
https://notcve.org/view.php?id=CVE-2007-6402
17 Dec 2007 — Stack-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6401. Desbordamiento de búfer basado en pila en mplayerc.exe de Media Player Classic (MPC) 6.4.9, cuando se usa con el codec 3ivx 4.5.1 ó 5.0.1, permite a atacantes remotos ejecutar código de su elección mediante un fichero determinado .mp4, posiblemente un asunto relacion... • https://www.exploit-db.com/exploits/4701 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 24%CPEs: 3EXPL: 3CVE-2007-4939 – Media Player Classic 6.4.9 - Malformed AVI Header Multiple Remote Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-4939
18 Sep 2007 — Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with an "indx truck size" of 0xffffffff, and certain wLongsPerEntry and nEntriesInuse values. Desbordamiento de búfer basado en pila en mplayerc.exe de Media Player Classic (MPC) 6.4.9.0 y v... • https://www.exploit-db.com/exploits/30579 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 1CVE-2007-4940
https://notcve.org/view.php?id=CVE-2007-4940
18 Sep 2007 — Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values. Múltiples desbordamientos de enteros en el Media Player Classic (MPC) 6.4.9.0 y versiones anteriores, como el utilizado en el modo solitario (st... • http://securityreason.com/securityalert/3144 • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 5%CPEs: 1EXPL: 2CVE-2006-7222 – Media Player Classic 6.4.9 - FLI File Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-7222
28 Aug 2007 — Buffer overflow in the CFLICStream::_deltachunk function in FLICSource.cpp in Media Player Classic (MPC) 6.4.9.0 allows user-assisted remote attackers to execute arbitrary code via a crafted FLI file. Desbordamiento de búfer en la función CFLICStream::_deltachunk en FLICSource.cpp en Media Player Classic (MPC) 6.4.9.0 permite a atacantes remotos con la intervención del usuario ejecutar código de su elección a través de un archivo FLI manipulado. • https://www.exploit-db.com/exploits/30529 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 1CVE-2007-3662
https://notcve.org/view.php?id=CVE-2007-3662
10 Jul 2007 — Media Player Classic (MPC) 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FLV file. Media Player Classic (MPC) 6.4.9.0 permite a atacantes remotos con la complicidad del usuario provocar una denegación de servicio o posiblemente ejecutar código de su elección mediante un fichero FLV manipulado artesanalmente. • http://osvdb.org/45808 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-3663
https://notcve.org/view.php?id=CVE-2007-3663
10 Jul 2007 — Divide-by-zero error in Media Player Classic (MPC) 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted MPA file. Error de división por cero en Media Player Classic (MPC) 6.4.9.0 permite a atacantes remotos con la intervención del usuario provocar una denegación de servicio o posiblemente ejecutar código de su elección mediante un archivo MPA manipulado. • http://osvdb.org/37376 •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2007-2723
https://notcve.org/view.php?id=CVE-2007-2723
16 May 2007 — Media Player Classic 6.4.9.0 allows user-assisted remote attackers to cause a denial of service (web browser crash) via an "empty" .MPA file, which triggers a divide-by-zero error. Media Player Classic 6.4.9.0 permite a atacantes con la intervención del usuario provocar denegación de servicio (caida del navegador web) a través de un fichero .MPA "vacio", lo cual dispara un error de división por cero. • http://osvdb.org/37376 • CWE-369: Divide By Zero •