Lucene search

[email protected]NVD:CVE-2002-0372

HistoryJul 03, 2002 - 4:00 a.m.

CVE-2002-0372

2002-07-0304:00:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.013 Low

EPSS

Percentile

85.6%

JSON

Microsoft Windows Media Player versions 6.4 and 7.1 and Media Player for Windows XP allow remote attackers to bypass Internet Explorer’s (IE) security mechanisms and run code via an executable .wma media file with a license installation requirement stored in the IE cache, aka the “Cache Path Disclosure via Windows Media Player”.

Affected configurations

NVD

Node

microsoftwindows_media_playerMatch-

microsoftwindows_media_playerMatch6.4

microsoftwindows_media_playerMatch7.1

References

www.iss.net/security_center/static/9420.php

www.securityfocus.com/bid/5107

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-032

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A281

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.013 Low

EPSS

Percentile

85.6%

JSON

Related for NVD:CVE-2002-0372

cvelist1 cve1 nessus1