CVE-2010-0268

CVE-2010-0268 describes a remote code execution vulnerability in the Windows Media Player ActiveX control (Windows Media Player 9 Series) on Windows 2000 SP4 and Windows XP SP2/SP3. The issue arises because the ActiveX control incorrectly handles specially crafted media content hosted on a malici...

CVE-2008-2253

CVE-2008-2253 affects Windows Media Player 11. A remote code execution vulnerability exists when specially crafted audio-only files are streamed from a Windows Media Server SSPL, due to a buffer overflow in WMP11. Exploitation requires a user to open the crafted file; impact could be full system ...

CVE-2010-3138

The CVE-2010-3138 issue affects Microsoft Windows XP SP3 with the Indeo Codec (iac25_32.ax) loading an insecure library (iacenc.dll) from the current working directory, enabling local privilege escalation via crafted .avi/.mka/.ra/.ram files (e.g., through players like BS.Player or Media Player C...

CVE-2004-0597

CVE-2004-0597 describes multiple buffer overflows in libpng 1.2.5 and earlier caused by insufficient bounds checks in png_handle_tRNS, png_handle_sBIT, and png_handle_hIST. This allows remote attackers to execute arbitrary code via crafted PNG images. Connected sources note that some advisories p...

CVE-2006-0025

CVE-2006-0025 is a stack-based buffer overflow in Windows Media Player 9/10 triggered by processing crafted PNG chunks, enabling remote code execution. Affected component: Windows Media Player (version 9 and 10 explicitly cited; other sources describe PNG chunk handling). Root cause: improper par...

CVE-2007-6401

CVE-2007-6401/6402 describe a stack-based buffer overflow in Media Player Classic components (mplayer2.exe/mplayerc.exe) when used with the 3ivx MPEG-4 codec (versions 4.5.1/5.0.1). The vulnerability allows remote arbitrary code execution via crafted MP4 files; affected product version cited in p...

CVE-2017-11768

CVE-2017-11768 is an information-disclosure vulnerability in Windows Media Player (affecting multiple Windows versions) that allows a crafted application to test for the presence of files on disk by abusing how WMP discloses file information. OpenVAS entries and the PacketStorm page corroborate t...

CVE-2009-0555

CVE-2009-0555 is a Windows Media Runtime issue affecting the ASF handling in DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and ACM. The flaw allows remote code execution via a crafted ASF audio file that uses the Windows Media Speech codec, as described in multiple sources (MS09-...

CVE-2004-1244

CVE-2004-1244 is a PNG-processing remote-code-execution vulnerability in Windows Media Player 9 (WMP9) that occurs when parsing PNG images with excessively large width/height values. Affects WMP9 and related Windows components (e.g., Windows Messenger, MSN Messenger) and can allow arbitrary code ...

CVE-2009-2525

CVE-2009-2525 is the Windows History: The Windows Media Runtime Heap Corruption Vulnerability. A remote code execution flaw exists in Windows Media Runtime (DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and Audio Compression Manager) caused by improper initialization of unspecifi...

CVE-2015-1728

CVE-2015-1728 affects Microsoft Windows Media Player 10–12. The root cause is improper handling of specially crafted DataObjects, enabling a remote attacker to execute arbitrary code when a user opens a crafted DataObject on a web page. The vulnerability is remote-code-execution with high impact,...

CVE-2006-6134

CVE-2006-6134 is a Windows Media Format ASX/ASX parsing vulnerability affecting Windows Media Player (WMP) 10.00.00.4036 on Windows XP SP2 and Windows Server 2003/2003 SP1. It arises from a heap-based/ parsing flaw in the Windows Media Format Runtime when handling ASX files, allowing remote code ...

CVE-2010-2745

CVE-2010-2745 is a Windows Media Player memory corruption vulnerability affecting WMP 9–12. It arises when Windows Media Player fails to deallocate objects during a browser reload, allowing a remote attacker to execute arbitrary code by convincing a user to visit a crafted web page. Exploitation ...

CVE-2006-0006

CVE-2006-0006 is a heap-based buffer overflow in Windows Media Player’s bitmap processing. A crafted BMP can trigger an overflow when the file declares a size of 0, allowing remote code execution. Affected products/versions include Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on W...

CVE-2007-3037

CVE-2007-3037 is a Windows Media Player skin parsing code execution vulnerability. It stems from header handling in skin files (WMZ/WMD), causing a size mismatch between compressed and decompressed data and resulting in a heap-based buffer overflow. Affects Windows Media Player versions 7.1, 9, 1...

CVE-2006-4702

CVE-2006-4702 is a remote code execution vulnerability in the Windows Media Format Runtime used by Windows Media Player 6.4 and Windows XP SP2, Server 2003 and SP1. The root cause is an unchecked buffer overrun while processing ASF files, allowing a crafted ASF file to execute arbitrary code with...

CVE-2008-3009

The CVE-2008-3009 issue affects Windows Media components: Windows Media Player 6.4, Windows Media Format Runtime (7.1–11), and Windows Media Services (4.1, 9, 2008). It stems from improper handling of SPNs during NTLM authentication, enabling a remote attacker to perform credential reflection and...

CVE-2010-0718

CVE-2010-0718 pertains to a buffer overflow in Microsoft Windows Media Player (versions 9 and 11.0.5721.5145) when processing crafted .mpg files. The OpenVAS entries describe a BOF condition that can trigger a denial of service (divide-by-zero) resulting in an application crash. The OpenVAS/NVD r...

CVE-2009-4309

CVE-2009-4309 describes a heap-based buffer overflow in the Intel Indeo41 codec used by Windows Media Player, affecting Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2. The flaw arises from missing bounds checking on a size field in the IV41/movi record of an IV41 stream, permitting remote atta...

CVE-2009-1331

Microsoft Windows Media Player (WMP) is affected by CVE-2009-1331 due to a MID file integer overflow vulnerability in WMP 11.0.5721.5260, enabling remote attackers to crash the program (DoS) by processing a crafted crash.mid. OpenVAS entries confirm the same issue and describe a denial-of-service...

CVE-2000-1113

The connected CERT document confirms a buffer overflow in Windows Media Player’s Active Stream Redirector (.ASX) file parser, affecting Windows Media Player versions 6.4 and 7, which could allow remote code execution when a user views a malicious page. The root cause is improper handling of ASX d...

CVE-2007-3035

CVE-2007-3035 is a remote code execution vulnerability in Windows Media Player skin handling. A boundary error when decompressing skin header data in WMZ/WMD skins could allow an attacker to execute arbitrary code on affected systems, with the attacker gaining the same privileges as the logged-in...

CVE-2008-5745

Microsoft Windows Media Player (WMP) 9–11 suffers an integer overflow in quartz.dll (DirectShow) that can be triggered by crafted WAV, SND, or MID files, causing an application crash (DoS). This aligns with CVE-2008-5745; related entries exist for CVE-2008-4927. Technical details about impact vec...

CVE-2008-4927

CVE-2008-4927 affects Microsoft Windows Media Player (WMP) 9.0 through 11. The vulnerability is a denial-of-service condition caused by parsing errors in MIDI or DAT files, specifically related to the MThd Header Parsing . It allows a user-assisted attacker to crash the application. The available...

CVE-2013-3127

The CVE-2013-3127 issue affects the Windows Media Format Runtime components: wmv9vcm.dll, wmvdmod.dll (WMV9/9.5) and wmvdecod.dll (WMV11/WM Player 11/12). The underlying problem is a remote code execution vulnerability triggered by parsing crafted media files, enabling an attacker to run arbitrar...

CVE-2001-0243

CVE-2001-0243 affects Windows Media Player 6.4/7: Internet shortcuts created in the user’s Temporary Files folder with a fixed name cause HTML to render in the Local Computer Zone rather than Internet Zone, enabling a remote attacker to read local files or execute commands when a user views a mal...

CVE-2003-0228

CVE-2003-0228 describes a directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP. An attacker can cause arbitrary code execution by delivering a skins file whose URL contains hex-encoded backslashes (%5C), leading to placement of an executa...

CVE-2005-2128

The CVE-2005-2128 issue affects Microsoft DirectShow (QUARTZ.DLL) used by Windows Media Player 9. A lack of validation of the AVI file’s strn element length allows a crafted .avi to cause a memory write (null byte) to an arbitrary location, enabling remote code execution. The vulnerability is exp...

CVE-2004-1324

The CVE-2004-1324 entry concerns the Microsoft Windows Media Player 9.0 ActiveX control. The vulnerability arises when processing a music file in Internet Explorer, where the (1) artist and (2) song fields can be used to trigger remote script execution in the Local computer zone. This exposes the...

CVE-2002-1847

CVE-2002-1847 concerns a buffer overflow in mplay32.exe of Microsoft Windows Media Player (versions 6.3–7.1). The vulnerability is triggered by a long mp3 filename command line argument, potentially allowing a remote attacker to execute arbitrary commands. The initial description notes that the o...

CVE-2010-1042

Microsoft Windows Media Player 11 is affected by CVE-2010-1042 due to an error in colorspace conversion when processing crafted .AVI files. The vulnerability can lead to a denial of service (memory corruption) and possibly arbitrary code execution. OpenVAS entries corroborate a Denial of Service ...

CVE-2014-2671

CVE-2014-2671 affects Microsoft Windows Media Player (WMP) 11.0.5721.5230. The vulnerability is a memory corruption issue triggered by processing a crafted WAV file, leading to denial of service and possibly unspecified impact. The connected OpenVAS entry corroborates a memory corruption vulnerab...

CVE-2007-4288

CVE-2007-4288 affects Microsoft Windows Media Player 11 (wmplayer.exe). The vulnerability is triggered by a crafted .au file that causes a divide-by-zero error, leading to an application crash (denial of service). The exploit relies on user-assisted interaction (opening or handling the crafted fi...

CVE-2001-0137

CVE-2001-0137 affects Windows Media Player 7. The vulnerability lets remote attackers cause the execution of malicious Java applets in Internet Explorer by embedding the applet in a skin.wmz skin file and referencing it via the skin in the codebase parameter of an applet tag (Windows Media Player...

CVE-2008-3010

CVE-2008-3010 relates to ISATAP handling in Windows Media components (Windows Media Player 6.4, Windows Media Format Runtime 7.1–11, Windows Media Services 4.1 and 9) where ISATAP addresses are misclassified in the Local Intranet zone, risking NTLM credential leakage and potential remote code exe...

CVE-2009-2527

CVE-2009-2527 describes a remote code execution vulnerability in Windows Media Player 6.4 caused by improper handling of specially crafted ASF files or streaming content. The heap-based buffer overflow could allow an attacker to take complete control of an affected system when a user opens a craf...

CVE-2000-0929

CVE-2000-0929 concerns Microsoft Windows Media Player 7. The vulnerability arises from an embedded OCX control used in RTf-enabled email clients that is not closed properly, allowing denial of service. Affected product is Windows Media Player 7 (RTF-enabled email contexts mentioned). Root cause: ...

CVE-2001-0719

This CVE affects Microsoft Windows Media Player 6.4, where a buffer overflow in handling Advanced Streaming Format (ASF) files can allow remote execution of arbitrary code. The vulnerability is triggered by a malformed ASF file, with a network attack vector, no authentication, and no user interac...

CVE-2003-0604

The CVE-2003-0604 entry concerns Windows Media Player 7 and 8 running within Internet Explorer (and other HTML-processing Microsoft products) that process an HTML iframe. The vulnerability arises when an IFRAME tag pointing to an ASF file with a Content-location containing a File:// URL bypasses ...

CVE-2002-1844

CVE-2002-1844 affects Microsoft Windows Media Player 6.3 when installed on Solaris, where executables are created with world-writable permissions. This allows local users to delete or modify executables to gain privileges. Documents confirm the issue but do not provide a confirmed patch or fix. P...

CVE-2005-1574

CVE-2005-1574 affects Windows Media Player versions 9 and 10, where WMDRM-protected content could redirect users to a licensing Web site even if the auto-license setting is disabled. The connected sources describe the impact as a license-redirect vulnerability within WMDRM, but do not provide dee...

CVE-2003-0348

CVE-2003-0348 concerns the Windows Media Player 9 Series ActiveX control. The ActiveX control allows script-access to the Windows Media Library, enabling a remote attacker to view and potentially modify library data via HTML script. CERT/CC confirms script access validation weaknesses, and Micros...

CVE-2001-0541

CVE-2001-0541 is a buffer overflow vulnerability in Microsoft Windows Media Player 7.1 and earlier triggered by a malformed Windows Media Station (.NSC) file, allowing remote command execution. The connected records corroborate the affected software (Windows Media Player 7.x), the attack vector (...

CVE-2002-0372

CVE-2002-0372 affects Windows Media Player 6.4, 7.1 and Media Player for Windows XP. A remote attacker could bypass Internet Explorer security and execute code by delivering a specially crafted .wma file with a license installation stored in the IE cache (Cache Path Disclosure via Windows Media P...

CVE-2002-0373

CVE-2002-0373 affects Windows Media Player 7.1 on Windows 2000, where the Windows Media Device Manager (WMDM) Service lets a local user elevate to LocalSystem by invoking the WMDM service to connect to an invalid local storage device. The vulnerability is local and impacts the WMDM component; aff...

CVE-2003-1107

Technical details about CVE-2003-1107 are not publicly provided in the supplied documents. Monitor for updates from official advisories or vendor advisories.

CVE-2007-5095

CVE-2007-5095 affects Microsoft Windows Media Player 9 on Windows XP SP2, where WMP invokes Internet Explorer to render HTML documents embedded in certain media files (notably via the HTMLView parameter in .asx files). Root cause is the browser rendering trigger from within WMP, potentially expos...

CVE-2001-0148

CVE-2001-0148 affects the WMP ActiveX Control in Windows Media Player 7, enabling remote command execution in Internet Explorer via javascript URLs (Frame Domain Verification variant). The vulnerability is triggered through the WMP ActiveX component, allowing a remote attacker to execute commands...

CVE-2001-0242

CVE-2001-0242 describes a buffer overflow in the Active Stream Redirector (.ASX) parsing of Windows Media Player (notably versions 6.4 and 7). The CERT/VU content attributes the issue to the .ASX file handler, which can be triggered by viewing a malicious web page, potentially allowing remote cod...

CVE-2002-0340

CVE-2002-0340 concerns Windows Media Player (WMP) 8.00.00.4477 and potentially other versions, where the player can automatically detect and execute .wmf and similar content even if the file extension or content type does not indicate .wmf. This behavior could enable attackers to trigger unauthor...