Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windows media player vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2006-0006
Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote malicious users to execute arbitrary code via a crafted bitmap...
Microsoft Windows Media Player 10
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 9
Microsoft Windows 98
Microsoft Windows 98se
Microsoft Windows 2000
Microsoft Windows 2003 Server R2
Microsoft Windows Me
Microsoft Windows Xp
2 EDB exploits
7.5
CVSSv2
CVE-2002-0340
Windows Media Player (WMP) 8.00.00.4477, and possibly other versions, automatically detects and executes .wmf and other content, even when the file's extension or content type does not specify .wmf, which could make it easier for malicious users to conduct unauthorized activ...
Microsoft Windows Media Player
5.1
CVSSv2
CVE-2001-0137
Windows Media Player 7 allows remote malicious users to execute malicious Java applets in Internet Explorer clients by enclosing the applet in a skin file named skin.wmz, then referencing that skin in the codebase parameter to an applet tag, aka the Windows Media Player Skins Fil...
Microsoft Windows Media Player 7
1 EDB exploit
7.5
CVSSv2
CVE-2001-0148
The WMP ActiveX Control in Windows Media Player 7 allows remote malicious users to execute commands in Internet Explorer via javascript URLs, a variant of the "Frame Domain Verification" vulnerability.
Microsoft Windows Media Player 7
1 EDB exploit
2.6
CVSSv2
CVE-2004-1324
The Microsoft Windows Media Player 9.0 ActiveX control may allow remote malicious users to execute arbitrary web script in the Local computer zone via the (1) artist or (2) song fields of a music file, if the file is processed using Internet Explorer.
Microsoft Windows Media Player 9
1 EDB exploit
5
CVSSv2
CVE-2004-1325
The getItemInfoByAtom function in the ActiveX control for Microsoft Windows Media Player 9.0 returns a 0 if the file does not exist and the size of the file if the file exists, which allows remote malicious users to determine the existence of files on the local system.
Microsoft Windows Media Player 9
1 EDB exploit
7.5
CVSSv2
CVE-2004-1244
Windows Media Player 9 allows remote malicious users to execute arbitrary code via a PNG file containing large (1) width or (2) height values, aka the "PNG Processing Vulnerability."
Microsoft Windows Media Player 9
5
CVSSv2
CVE-2005-2128
QUARTZ.DLL in Microsoft Windows Media Player 9 allows remote malicious users to write a null byte to arbitrary memory via an AVI file with a crafted strn element with a modified length value.
Microsoft Windows Media Player 9
7.5
CVSSv2
CVE-2001-0719
Buffer overflow in Microsoft Windows Media Player 6.4 allows remote malicious users to execute arbitrary code via a malformed Advanced Streaming Format (ASF) file.
Microsoft Windows Media Player 6.4
9.3
CVSSv2
CVE-2009-1331
Integer overflow in Microsoft Windows Media Player (WMP) 11.0.5721.5260 allows remote malicious users to cause a denial of service (application crash) via a crafted .mid file, as demonstrated by crash.mid.
Microsoft Windows Media Player 11.0.5721.5260
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »