Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-3037
HistoryAug 14, 2007 - 9:17 p.m.

CVE-2007-3037

2007-08-1421:17:00
CWE-94
CWE-119
[email protected]
web.nvd.nist.gov
6

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

AI Score

7.7

Confidence

Low

EPSS

0.573

Percentile

97.7%

JSON

Microsoft Windows Media Player 7.1, 9, 10, and 11 allows remote attackers to execute arbitrary code via a skin file (WMZ or WMD) with crafted header information that causes a size mismatch between compressed and decompressed data and triggers a heap-based buffer overflow, aka โ€œWindows Media Player Code Execution Vulnerability Parsing Skins.โ€

Affected configurations

Nvd
Node
microsoftwindows_media_playerMatch7.1
OR
microsoftwindows_media_playerMatch9
OR
microsoftwindows_media_playerMatch10
OR
microsoftwindows_media_playerMatch11
VendorProductVersionCPE
microsoftwindows_media_player7.1cpe:2.3:a:microsoft:windows_media_player:7.1:*:*:*:*:*:*:*
microsoftwindows_media_player9cpe:2.3:a:microsoft:windows_media_player:9:*:*:*:*:*:*:*
microsoftwindows_media_player10cpe:2.3:a:microsoft:windows_media_player:10:*:*:*:*:*:*:*
microsoftwindows_media_player11cpe:2.3:a:microsoft:windows_media_player:11:*:*:*:*:*:*:*

Related

prion 1
seebug 1
securityvulns 3
zdi 1
cvelist 1
checkpoint_advisories 1
cve 1
nessus 1
openvas 2
prion
prion
Heap overflow
2007-08-14 21:17:00
seebug
seebug
Winodws Media Player็šฎ่‚ค่งฃๆžๅคงๅฐ้”™่ฏฏๅŒน้…ๅ †ๆบขๅ‡บๆผๆดž๏ผˆMS07-047๏ผ‰
2007-08-17 00:00:00
securityvulns
securityvulns
[Full-disclosure] ZDI-07-046: Microsoft Windows Media Player Skin Parsing Size Mismatch Heap Overflow Vulnerability
2007-08-15 00:00:00
Microsoft Windows Media Player multiple security vulnerabilities
2007-08-15 00:00:00
http://www.microsoft.com/technet/security/bulletin/ms07-047.mspx
2007-08-15 00:00:00
zdi
zdi
Microsoft Windows Media Player Skin Parsing Size Mismatch Heap Overflow Vulnerability
2007-08-14 00:00:00
cvelist
cvelist
CVE-2007-3037
2007-08-14 21:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Media Player Skin Parsing Code Execution (MS07-047; CVE-2007-3037)
2007-08-22 00:00:00
cve
cve
CVE-2007-3037
2007-08-14 21:17:00
nessus
nessus
MS07-047: Vulnerability in Windows Media Player Could Allow Remote Code Execution (936782)
2007-08-14 00:00:00
openvas
openvas
Vulnerabilities in Windows Media Player Could Allow Remote Code Execution (936782)
2011-01-14 00:00:00
Vulnerabilities in Windows Media Player Could Allow Remote Code Execution (936782)
2011-01-14 00:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

AI Score

7.7

Confidence

Low

EPSS

0.573

Percentile

97.7%

JSON
Related for NVD:CVE-2007-3037
prion1seebug1securityvulns3zdi1cvelist1checkpoint_advisories1cve1nessus1openvas2