Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft windows media player 6.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2527
Heap-based buffer overflow in Microsoft Windows Media Player 6.4 allows remote malicious users to execute arbitrary code via (1) a crafted ASF file or (2) crafted streaming content, aka "WMP Heap Overflow Vulnerability."
Microsoft Windows Media Player 6.4
NA
CVE-2008-3009
Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1, 9, and 2008 do not properly use the Service Principal Name (SPN) identifier when validating replies to authentication requests, which allows remote servers to execute ...
Microsoft Windows Media Player 6.4
Microsoft Windows Media Format Runtime 7.1
Microsoft Windows Media Services 4.1
Microsoft Windows Media Services 9
Microsoft Windows Media Services 2008
Microsoft Windows Media Format Runtime 11
Microsoft Windows Media Format Runtime 9.5
Microsoft Windows Media Format Runtime 9
NA
CVE-2008-3010
Microsoft Windows Media Player 6.4, Windows Media Format Runtime 7.1 through 11, and Windows Media Services 4.1 and 9 incorrectly associate ISATAP addresses with the Local Intranet zone, which allows remote servers to capture NTLM credentials, and execute arbitrary code through c...
Microsoft Windows Media Player 6.4
NA
CVE-2007-6401
Stack-based buffer overflow in mplayer2.exe in Microsoft Windows Media Player (WMP) 6.4, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote malicious users to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6402.
3ivx Mpeg-4 Codec 5.0.1
3ivx Mpeg-4 Codec 4.5.1
Microsoft Windows Media Player 6.4
1 EDB exploit
NA
CVE-2006-6601
Windows Media Player 10.00.00.4036 in Microsoft Windows XP SP2 allows user-assisted remote malicious users to cause a denial of service via a .MID (MIDI) file with a malformed header chunk without any track chunks, possibly involving (1) number of tracks of (2) time division fiel...
Windows Media Player 10.00.00.4036
Microsoft Windows Xp
2 EDB exploits
NA
CVE-2006-4702
Buffer overflow in the Windows Media Format Runtime in Microsoft Windows Media Player (WMP) 6.4 and Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote malicious users to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.
Microsoft Windows Media Player 6.4
Microsoft Windows 2003 Server Sp1
Microsoft Windows 2003 Server Gold
Microsoft Windows Xp
NA
CVE-2003-1107
The DHTML capability in Microsoft Windows Media Player (WMP) 6.4, 7.0, 7.1, and 9 may run certain URL commands from a security zone that is less trusted than the current zone, which allows malicious users to bypass intended access restrictions.
Microsoft Windows Media Player 7
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 6.4
Microsoft Windows Media Player 9
NA
CVE-2002-1847
Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 up to and including 7.1 allows remote malicious users to execute arbitrary commands via a long mp3 filename command line argument. NOTE: since the only known attack vector requires command line access, thi...
Microsoft Windows Media Player 7
Microsoft Windows Media Player 6.3
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 6.4
Microsoft Windows Media Player -
1 EDB exploit
NA
CVE-2002-0372
Microsoft Windows Media Player versions 6.4 and 7.1 and Media Player for Windows XP allow remote malicious users to bypass Internet Explorer's (IE) security mechanisms and run code via an executable .wma media file with a license installation requirement stored in the IE cac...
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 6.4
Microsoft Windows Media Player -
NA
CVE-2001-0719
Buffer overflow in Microsoft Windows Media Player 6.4 allows remote malicious users to execute arbitrary code via a malformed Advanced Streaming Format (ASF) file.
Microsoft Windows Media Player 6.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »