Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft windows media player vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-1999-1110
Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote malicious web sites to determine the existence of files on the client.
Microsoft Internet Explorer 5.0
1 EDB exploit
454
VMScore
CVE-2006-0024
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and previous versions allow remote malicious users to execute arbitrary code via a crafted SWF file.
Macromedia Flash Player 7.0.60.0
Macromedia Flash Player 5.0 R50
Macromedia Flash Player 7.0.61.0
Macromedia Flash Player 5.0
Macromedia Flash Player 6.0.79.0
Macromedia Flash Player 7.0 R19
Macromedia Flash Player 6.0.65.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0
Macromedia Flash Player 4.0 R12
Macromedia Flash Player 6.0.47.0
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 7.0.19.0
Macromedia Flash Player
454
VMScore
CVE-2005-2628
Macromedia Flash 6 and 7 (Flash.ocx) allows remote malicious users to execute arbitrary code via a SWF file with a modified frame type identifier that is used as an out-of-bounds array index to a function pointer.
Macromedia Flash Player 6.0.79.0
Macromedia Flash Player 7.0 R19
Macromedia Flash Player 6.0.65.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0
Macromedia Flash Player 6.0.47.0
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 7.0.19.0
828
VMScore
CVE-2007-4676
Heap-based buffer overflow in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via malformed elements when parsing (1) Poly type (0x0070 through 0x0074) and (2) PackBitsRgn field (0x0099) opcodes in a PICT image.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista -
Microsoft Windows Xp -
828
VMScore
CVE-2007-4677
Heap-based buffer overflow in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via an invalid color table size when parsing the color table atom (CTAB) in a movie file, related to the CTAB RGB values.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista -
Microsoft Windows Xp -
828
VMScore
CVE-2007-3751
Unspecified vulnerability in QuickTime for Java in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via untrusted Java applets that gain privileges via unspecified vectors.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista
Microsoft Windows Xp
454
VMScore
CVE-2006-3587
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote malicious users to execute arbitrary commands via a malformed .swf file that results in "multiple improper memory access" errors.
Adobe Flash Player 8.0.24.0
668
VMScore
CVE-2002-0615
The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing malicious users to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation".
Microsoft Excel 2002
Microsoft Excel 2000
Microsoft Office 2000
Microsoft Office Xp
454
VMScore
CVE-2002-0481
An interaction between Windows Media Player (WMP) and Outlook 2002 allows remote malicious users to bypass Outlook security settings and execute Javascript via an IFRAME in an HTML email message that references .WMS (Windows Media Skin) or other WMP media files, whose onload hand...
Microsoft Outlook 2002
445
VMScore
CVE-2004-0503
Microsoft Outlook 2003 allows remote malicious users to bypass the default zone restrictions and execute script within media files via a Rich Text Format (RTF) message containing an OLE object for the Windows Media Player, which bypasses Media Player's setting to disallow sc...
Microsoft Outlook 2003
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2023-38506
CVE-2024-37198
CVE-2023-45197
CVE-2024-38621
CVE-2024-30103
elevation of privilege
CVE-2024-0044
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »