CVSS: 4.3EPSS: 64%CPEs: 1EXPL: 2CVE-2007-4288 – Microsoft Windows Media Player 11 - AU Divide-by-Zero Denial of Service
https://notcve.org/view.php?id=CVE-2007-4288
Microsoft Windows Media Player 11 (wmplayer.exe) allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted .au file that triggers a divide-by-zero error, as demonstrated by iapetus.au. Microsoft Windows Media Player 11 (wmplayer.exe) permite a atacantes remotos con la complicidad del usuario provocar una denegación de servicio (caída de aplicación) mediante un fichero .au manipulado que dispara un error de división por cero, como se demuestra con iapetus.au. • https://www.exploit-db.com/exploits/30462 http://securityreason.com/securityalert/2987 http://www.safehack.com/exp/mp/mplayer11.txt http://www.securityfocus.com/archive/1/475839/100/0/threaded http://www.securityfocus.com/bid/25236 https://exchange.xforce.ibmcloud.com/vulnerabilities/35878 •
CVSS: 4.3EPSS: 12%CPEs: 2EXPL: 2CVE-2006-6601 – Microsoft Windows Media Player 6.4/10.0 - MID Malformed Header Chunk Denial of Service
https://notcve.org/view.php?id=CVE-2006-6601
Windows Media Player 10.00.00.4036 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a .MID (MIDI) file with a malformed header chunk without any track chunks, possibly involving (1) number of tracks of (2) time division fields that are set to 0. Windows Media Player 10.00.00.4036 en Microsoft Windows XP SP2 permite a atacantes remotos con la intervención del usuario provocar una denegación de servicio mediante un archivo .MID (MIDI) con un trozo de cabecera mal formada sin ningún trozo de pista, posiblemente afectando (1) número de pistas (2), campos de división de tiempo establecidos a 0. • https://www.exploit-db.com/exploits/29285 https://www.exploit-db.com/exploits/2935 http://www.attrition.org/pipermail/vim/2006-December/001182.html http://www.securityfocus.com/archive/1/454505/100/0/threaded http://www.securityfocus.com/bid/21612 http://www.vupen.com/english/advisories/2006/5039 • CWE-399: Resource Management Errors •
CVSS: 6.8EPSS: 62%CPEs: 4EXPL: 0CVE-2006-4702
https://notcve.org/view.php?id=CVE-2006-4702
Buffer overflow in the Windows Media Format Runtime in Microsoft Windows Media Player (WMP) 6.4 and Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file. Desbordamiento de Búfer en el Windows Media Format Runtime del Microsoft Windows Media Player (WMP) 6.4 y Windows XP SP2, Server 2003, y Server 2003 SP1 permite a atacantes remotos ejecutar código de su elección a través de la modificación del fichero Advanced Systems Format (ASF). • http://securitytracker.com/id?1017372 http://support.avaya.com/elmodocs2/security/ASA-2006-274.htm http://www.securityfocus.com/archive/1/454969/100/200/threaded http://www.securityfocus.com/bid/21505 http://www.us-cert.gov/cas/techalerts/TA06-346A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-078 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A536 •
CVSS: 7.5EPSS: 97%CPEs: 1EXPL: 1CVE-2006-6134
https://notcve.org/view.php?id=CVE-2006-6134
Heap-based buffer overflow in the WMCheckURLScheme function in WMVCORE.DLL in Microsoft Windows Media Player (WMP) 10.00.00.4036 on Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long HREF attribute, using an unrecognized protocol, in a REF element in an ASX PlayList file. Desbordamiento de búfer basado en montículo en la función WMCheckURLScheme de WMVCORE.DLL en Microsoft Windows Media Player (WMP) 10.00.00.4036 en Windows XP SP2, Server 2003, y Server 2003 SP1 permite a atacantes remotos provocar una denegación de servicio (cierre de aplicación) y ejecutar código de su elección mediante un atributo HREF largo, utilizando un protocolo no reconocido, en un elemento REF de un archivo de lista de reproducción ASX. • http://blogs.technet.com/msrc/archive/2006/12/07/public-proof-of-concept-code-for-asx-file-format-isssue.aspx http://research.eeye.com/html/alerts/zeroday/20061122.html http://secunia.com/advisories/22971 http://securityreason.com/securityalert/1922 http://securitytracker.com/id?1017354 http://support.avaya.com/elmodocs2/security/ASA-2006-274.htm http://www.kb.cert.org/vuls/id/208769 http://www.securityfocus.com/archive/1/452352/100/0/threaded http://www.securityfocus.com/a • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 88%CPEs: 2EXPL: 0CVE-2006-0025
https://notcve.org/view.php?id=CVE-2006-0025
Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size. • http://secunia.com/advisories/20626 http://securitytracker.com/id?1016284 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=406 http://www.kb.cert.org/vuls/id/608020 http://www.osvdb.org/26430 http://www.securityfocus.com/bid/18385 http://www.us-cert.gov/cas/techalerts/TA06-164A.html http://www.vupen.com/english/advisories/2006/2322 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-024 https://exchange.xforce.ibmcloud.com/vulnera • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •