Windows Media Player@10 Security Vulnerabilities and Issues — Windows Media Player@10 CVE List

Lucene search

MicrosoftWindows Media Player10

9 matches found

CVE•added 2006/06/13 7:6 p.m.•114 views

CVE-2006-0025

Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.

9.3CVSS7.6AI score0.71517EPSS

CVE•added 2015/06/10 1:59 a.m.•53 views

CVE-2015-1728

Microsoft Windows Media Player 10 through 12 allows remote attackers to execute arbitrary code via a crafted DataObject on a web site, aka "Windows Media Player RCE via DataObject Vulnerability."

9.3CVSS7.6AI score0.26887EPSS

CVE•added 2010/10/13 7:0 p.m.•52 views

CVE-2010-2745

Microsoft Windows Media Player (WMP) 9 through 12 does not properly deallocate objects during a browser reload action, which allows user-assisted remote attackers to execute arbitrary code via crafted media content referenced in an HTML document, aka "Windows Media Player Memory Corruption Vulnerab...

9.3CVSS7.4AI score0.58741EPSS

CVE•added 2006/02/14 10:6 p.m.•49 views

CVE-2006-0006

Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap (.BMP) file that specifi...

9.3CVSS7.7AI score0.739EPSS

CVE•added 2007/08/14 9:17 p.m.•45 views

CVE-2007-3037

Microsoft Windows Media Player 7.1, 9, 10, and 11 allows remote attackers to execute arbitrary code via a skin file (WMZ or WMD) with crafted header information that causes a size mismatch between compressed and decompressed data and triggers a heap-based buffer overflow, aka "Windows Media Player ...

4CVSS7.5AI score0.59741EPSS

CVE•added 2008/11/04 9:0 p.m.•43 views

CVE-2008-4927

Microsoft Windows Media Player (WMP) 9.0 through 11 allows user-assisted attackers to cause a denial of service (application crash) via a malformed (1) MIDI or (2) DAT file, related to "MThd Header Parsing." NOTE: the provenance of this information is unknown; the details are obtained solely from t...

4.3CVSS6.2AI score0.25024EPSS

CVE•added 2008/12/29 3:24 p.m.•43 views

CVE-2008-5745

Integer overflow in quartz.dll in the DirectShow framework in Microsoft Windows Media Player (WMP) 9, 10, and 11, including 11.0.5721.5260, allows remote attackers to cause a denial of service (application crash) via a crafted (1) WAV, (2) SND, or (3) MID file. NOTE: this has been incorrectly repor...

4.3CVSS6.7AI score0.44318EPSS

CVE•added 2007/08/14 9:17 p.m.•41 views

CVE-2007-3035

Unspecified vulnerability in Microsoft Windows Media Player 7.1, 9, 10, and 11 allows remote attackers to execute arbitrary code via a skin file (WMZ or WMD) with crafted header information that is not properly handled during decompression, aka "Windows Media Player Code Execution Vulnerability Dec...

7.6CVSS7.4AI score0.52084EPSS

CVE•added 2005/05/14 4:0 a.m.•37 views

CVE-2005-1574

Windows Media Player 9 and 10, in certain cases, allows content protected by Windows Media Digital Rights Management (WMDRM) to redirect the user to a web site to obtain a license, even when the "Acquire licenses automatically for protected content" setting is not enabled.

7.5CVSS6.7AI score0.04077EPSS