Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft windows media player vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-1110
Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote malicious web sites to determine the existence of files on the client.
Microsoft Internet Explorer 5.0
1 EDB exploit
NA
CVE-2006-0024
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and previous versions allow remote malicious users to execute arbitrary code via a crafted SWF file.
Macromedia Flash Player 7.0.60.0
Macromedia Flash Player 5.0 R50
Macromedia Flash Player 7.0.61.0
Macromedia Flash Player 5.0
Macromedia Flash Player 6.0.79.0
Macromedia Flash Player 7.0 R19
Macromedia Flash Player 6.0.65.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0
Macromedia Flash Player 4.0 R12
Macromedia Flash Player 6.0.47.0
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 7.0.19.0
Macromedia Flash Player
NA
CVE-2005-2628
Macromedia Flash 6 and 7 (Flash.ocx) allows remote malicious users to execute arbitrary code via a SWF file with a modified frame type identifier that is used as an out-of-bounds array index to a function pointer.
Macromedia Flash Player 6.0.79.0
Macromedia Flash Player 7.0 R19
Macromedia Flash Player 6.0.65.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0
Macromedia Flash Player 6.0.47.0
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 7.0.19.0
NA
CVE-2007-4676
Heap-based buffer overflow in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via malformed elements when parsing (1) Poly type (0x0070 through 0x0074) and (2) PackBitsRgn field (0x0099) opcodes in a PICT image.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista -
Microsoft Windows Xp -
NA
CVE-2007-4677
Heap-based buffer overflow in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via an invalid color table size when parsing the color table atom (CTAB) in a movie file, related to the CTAB RGB values.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista -
Microsoft Windows Xp -
NA
CVE-2007-3751
Unspecified vulnerability in QuickTime for Java in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via untrusted Java applets that gain privileges via unspecified vectors.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista
Microsoft Windows Xp
NA
CVE-2006-3587
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote malicious users to execute arbitrary commands via a malformed .swf file that results in "multiple improper memory access" errors.
Adobe Flash Player 8.0.24.0
NA
CVE-2002-0615
The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing malicious users to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation".
Microsoft Excel 2002
Microsoft Excel 2000
Microsoft Office 2000
Microsoft Office Xp
NA
CVE-2002-0481
An interaction between Windows Media Player (WMP) and Outlook 2002 allows remote malicious users to bypass Outlook security settings and execute Javascript via an IFRAME in an HTML email message that references .WMS (Windows Media Skin) or other WMP media files, whose onload hand...
Microsoft Outlook 2002
NA
CVE-2004-0503
Microsoft Outlook 2003 allows remote malicious users to bypass the default zone restrictions and execute script within media files via a Rich Text Format (RTF) message containing an OLE object for the Windows Media Player, which bypasses Media Player's setting to disallow sc...
Microsoft Outlook 2003
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »