Lucene search
K
MicrosoftWindows Media Player7

11 matches found

CVE
CVE
added 2001/01/22 5:0 a.m.59 views

CVE-2000-1113

The connected CERT document confirms a buffer overflow in Windows Media Player’s Active Stream Redirector (.ASX) file parser, affecting Windows Media Player versions 6.4 and 7, which could allow remote code execution when a user views a malicious page. The root cause is improper handling of ASX d...

7.5CVSS7.7AI score0.1942EPSS
CVE
CVE
added 2001/09/18 4:0 a.m.53 views

CVE-2001-0243

CVE-2001-0243 affects Windows Media Player 6.4/7: Internet shortcuts created in the user’s Temporary Files folder with a fixed name cause HTML to render in the Local Computer Zone rather than Internet Zone, enabling a remote attacker to read local files or execute commands when a user views a mal...

5CVSS6.5AI score0.1759EPSS
CVE
CVE
added 2005/06/28 4:0 a.m.53 views

CVE-2002-1847

CVE-2002-1847 concerns a buffer overflow in mplay32.exe of Microsoft Windows Media Player (versions 6.3–7.1). The vulnerability is triggered by a long mp3 filename command line argument, potentially allowing a remote attacker to execute arbitrary commands. The initial description notes that the o...

7.5CVSS8.1AI score0.33607EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.50 views

CVE-2000-0929

CVE-2000-0929 concerns Microsoft Windows Media Player 7. The vulnerability arises from an embedded OCX control used in RTf-enabled email clients that is not closed properly, allowing denial of service. Affected product is Windows Media Player 7 (RTF-enabled email contexts mentioned). Root cause: ...

5CVSS6.8AI score0.14356EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.50 views

CVE-2001-0137

CVE-2001-0137 affects Windows Media Player 7. The vulnerability lets remote attackers cause the execution of malicious Java applets in Internet Explorer by embedding the applet in a skin.wmz skin file and referencing it via the skin in the codebase parameter of an applet tag (Windows Media Player...

5.1CVSS7.3AI score0.22168EPSS
CVE
CVE
added 2003/07/29 4:0 a.m.50 views

CVE-2003-0604

The CVE-2003-0604 entry concerns Windows Media Player 7 and 8 running within Internet Explorer (and other HTML-processing Microsoft products) that process an HTML iframe. The vulnerability arises when an IFRAME tag pointing to an ASF file with a Content-location containing a File:// URL bypasses ...

7.5CVSS7.8AI score0.12978EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.47 views

CVE-2001-0541

CVE-2001-0541 is a buffer overflow vulnerability in Microsoft Windows Media Player 7.1 and earlier triggered by a malformed Windows Media Station (.NSC) file, allowing remote command execution. The connected records corroborate the affected software (Windows Media Player 7.x), the attack vector (...

7.5CVSS8.1AI score0.15554EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.46 views

CVE-2001-0148

CVE-2001-0148 affects the WMP ActiveX Control in Windows Media Player 7, enabling remote command execution in Internet Explorer via javascript URLs (Frame Domain Verification variant). The vulnerability is triggered through the WMP ActiveX component, allowing a remote attacker to execute commands...

7.5CVSS7.5AI score0.26755EPSS
CVE
CVE
added 2005/03/11 5:0 a.m.45 views

CVE-2003-1107

Technical details about CVE-2003-1107 are not publicly provided in the supplied documents. Monitor for updates from official advisories or vendor advisories.

5.1CVSS7.1AI score0.05182EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.44 views

CVE-2000-1112

Technical details about CVE-2000-1112 are not publicly available in the provided connected documents. The record describes Windows Media Player 7 skin-script execution, but no specifics on affected versions, root cause, exploit method, or fixes are included. Monitor for updates.

4.6CVSS7.2AI score0.13971EPSS
CVE
CVE
added 2001/05/24 4:0 a.m.44 views

CVE-2001-0242

CVE-2001-0242 describes a buffer overflow in the Active Stream Redirector (.ASX) parsing of Windows Media Player (notably versions 6.4 and 7). The CERT/VU content attributes the issue to the .ASX file handler, which can be triggered by viewing a malicious web page, potentially allowing remote cod...

7.5CVSS7.6AI score0.30017EPSS