Windows Media Services Security Vulnerabilities and Issues — Windows Media Services CVE List

Lucene search

MicrosoftWindows Media Services

9 matches found

CVE•added 2009/09/08 10:30 p.m.•78 views

CVE-2009-2499

Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows Vista Gold, SP1, and SP2 and Server 2008; allows remote attackers to execute arbitrary code via an MP3 file with crafted metadata that triggers memory corruption, aka "Windows Media Playback Memory Co...

8.5CVSS7.5AI score0.39788EPSS

CVE•added 2009/09/08 10:30 p.m.•73 views

CVE-2009-2498

Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format (ASF) files, which allows remote attackers to execute arbitrary code via a crafted (1) .asf, (2) .wmv, or (3) .wma file, aka "Windows Me...

9.3CVSS7.4AI score0.3851EPSS

CVE•added 2008/12/10 2:0 p.m.•44 views

CVE-2008-3009

Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1, 9, and 2008 do not properly use the Service Principal Name (SPN) identifier when validating replies to authentication requests, which allows remote servers to execute arbitrary code via ...

10CVSS7.6AI score0.41884EPSS

CVE•added 2000/10/13 4:0 a.m.•41 views

CVE-2000-0495

Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.

5CVSS6.9AI score0.17341EPSS

CVE•added 2001/05/07 4:0 a.m.•38 views

CVE-2001-0083

Windows Media Unicast Service in Windows Media Services 4.0 and 4.1 does not properly shut down some types of connections, producing a memory leak that allows remote attackers to cause a denial of service via a series of severed connections, aka the "Severed Windows Media Server Connection" vulnera...

5CVSS6.9AI score0.19067EPSS

CVE•added 2007/12/12 12:46 a.m.•38 views

CVE-2007-0064

Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services 9.1 for Microsoft Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.

9.3CVSS7.7AI score0.69965EPSS

CVE•added 2000/04/10 4:0 a.m.•36 views

CVE-2000-0211

The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability.

5CVSS6.5AI score0.26564EPSS

CVE•added 2001/01/22 5:0 a.m.•36 views

CVE-2000-0849

Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the "Unicast Service Race Condition" vulnerability.

2.6CVSS6.9AI score0.09556EPSS

CVE•added 2004/09/01 4:0 a.m.•31 views

CVE-2003-0905

Unknown vulnerability in Windows Media Station Service and Windows Media Monitor Service components of Windows Media Services 4.1 allows remote attackers to cause a denial of service (disallowing new connections) via a certain sequence of TCP/IP packets.

5CVSS6.6AI score0.27216EPSS