Lucene search
HistoryDec 31, 2002 - 5:00 a.m.
CVE-2002-1847
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.017
Percentile
87.7%
Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument. NOTE: since the only known attack vector requires command line access, this may not be a vulnerability.
Affected configurations
Node
microsoftwindows_media_playerMatch-
ORmicrosoftwindows_media_playerMatch6.3
ORmicrosoftwindows_media_playerMatch6.4
ORmicrosoftwindows_media_playerMatch7
ORmicrosoftwindows_media_playerMatch7.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_media_player | - | cpe:2.3:a:microsoft:windows_media_player:-:*:*:*:*:*:*:* |
| microsoft | windows_media_player | 6.3 | cpe:2.3:a:microsoft:windows_media_player:6.3:*:*:*:*:*:*:* |
| microsoft | windows_media_player | 6.4 | cpe:2.3:a:microsoft:windows_media_player:6.4:*:*:*:*:*:*:* |
| microsoft | windows_media_player | 7 | cpe:2.3:a:microsoft:windows_media_player:7:*:*:*:*:*:*:* |
| microsoft | windows_media_player | 7.1 | cpe:2.3:a:microsoft:windows_media_player:7.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2002-1847
2005-06-28 04:00:00
cve
cve
CVE-2002-1847
2005-06-28 04:00:00
exploitdb
exploitdb
Microsoft Windows Media Player 6/7 - Filename Buffer Overflow
2002-07-30 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.017
Percentile
87.7%
Related for NVD:CVE-2002-1847