5 matches found
Vulnerabilities in Windows Media Player Could Allow Remote Code Execution (936782)
This host is missing a critical security update according to Microsoft Bulletin MS07-047. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Media Player Skin Parsing Code Execution (MS07-047; CVE-2007-3037)
Microsoft Windows Media Player is an application for the Microsoft Windows operating system. It supports numerous video, audio, and image formats. A buffer overflow vulnerability has been identified in Microsoft Windows Media Player. Remote attacker could exploit this issue via a malformed skin...
Winodws Media Player皮肤解析大小错误匹配堆溢出漏洞(MS07-047)
BUGTRAQ ID: 25305 CVECAN ID: CVE-2007-3037 Media Player是Windows操作系统中默认捆绑的媒体播放器。 Media Player在处理畸形格式的皮肤文件时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞通过诱使用户处理恶意文件控制用户系统。 Media Player在解析畸形的皮肤文件(WMZ)时错误地匹配了压缩/解压大小,如果用户受骗加载了恶意的皮肤文件或访问了恶意站点的话就可能触发堆溢出,导致执行任意指令。 Microsoft Windows Media Player 9.0 Microsoft Windows Media Play...
[Full-disclosure] ZDI-07-046: Microsoft Windows Media Player Skin Parsing Size Mismatch Heap Overflow Vulnerability
ZDI-07-046: Microsoft Windows Media Player Skin Parsing Size Mismatch Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-046.html August 14, 2007 -- CVE ID: CVE-2007-3037 -- Affected Vendor: Microsoft -- Affected Products: Windows Media Player 7.1 Windows Media Player ...
CVE-2007-3037
CVE-2007-3037 is a Windows Media Player skin parsing code execution vulnerability. It stems from header handling in skin files (WMZ/WMD), causing a size mismatch between compressed and decompressed data and resulting in a heap-based buffer overflow. Affects Windows Media Player versions 7.1, 9, 1...