CVSS: 9.3EPSS: 24%CPEs: 3EXPL: 3CVE-2007-4939 – Media Player Classic 6.4.9 - Malformed AVI Header Multiple Remote Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-4939
18 Sep 2007 — Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with an "indx truck size" of 0xffffffff, and certain wLongsPerEntry and nEntriesInuse values. Desbordamiento de búfer basado en pila en mplayerc.exe de Media Player Classic (MPC) 6.4.9.0 y v... • https://www.exploit-db.com/exploits/30579 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 1CVE-2007-4940
https://notcve.org/view.php?id=CVE-2007-4940
18 Sep 2007 — Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values. Múltiples desbordamientos de enteros en el Media Player Classic (MPC) 6.4.9.0 y versiones anteriores, como el utilizado en el modo solitario (st... • http://securityreason.com/securityalert/3144 • CWE-189: Numeric Errors •