Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windows media player vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2000-0929
Microsoft Windows Media Player 7 allows malicious users to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
Microsoft Windows Media Player 7
1 EDB exploit
505
VMScore
CVE-1999-1110
Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote malicious web sites to determine the existence of files on the client.
Microsoft Internet Explorer 5.0
1 EDB exploit
465
VMScore
CVE-2000-1112
Microsoft Windows Media Player 7 executes scripts in custom skin (.WMS) files, which could allow remote malicious users to gain privileges via a skin that contains a malicious script, aka the ".WMS Script Execution" vulnerability.
Microsoft Windows Media Player 6.4
Microsoft Windows Media Player 7
1 EDB exploit
454
VMScore
CVE-2006-3587
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote malicious users to execute arbitrary commands via a malformed .swf file that results in "multiple improper memory access" errors.
Adobe Flash Player 8.0.24.0
454
VMScore
CVE-2006-1467
Integer overflow in the AAC file parsing code in Apple iTunes prior to 6.0.5 on Mac OS X 10.2.8 or later, and Windows XP and 2000, allows remote user-assisted malicious users to execute arbitrary code via an AAC (M4P, M4A, or M4B) file with a sample table size (STSZ) atom with a ...
Apple Itunes
454
VMScore
CVE-2006-1942
Mozilla Firefox 1.5.0.2 and possibly other versions prior to 1.5.0.4, Netscape 8.1, 8.0.4, and 7.2, and K-Meleon 0.9.13 allows user-assisted remote malicious users to open local files via a web page with an IMG element containing a SRC attribute with a non-image file:// URL, then...
K-meleon Project K-meleon 0.9.13
Mozilla Firefox 1.5.0.2
Netscape Navigator 7.2
Netscape Navigator 8.0.40
Netscape Navigator 8.1
454
VMScore
CVE-2006-0024
Multiple unspecified vulnerabilities in Adobe Flash Player 8.0.22.0 and previous versions allow remote malicious users to execute arbitrary code via a crafted SWF file.
Macromedia Flash Player 5.0
Macromedia Flash Player 5.0 R50
Macromedia Flash Player 7.0.19.0
Macromedia Flash Player 7.0.60.0
Macromedia Flash Player 6.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 7.0.61.0
Macromedia Flash Player 7.0 R19
Macromedia Flash Player
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 6.0.47.0
Macromedia Flash Player 4.0 R12
Macromedia Flash Player 6.0.65.0
Macromedia Flash Player 6.0.79.0
454
VMScore
CVE-2005-2628
Macromedia Flash 6 and 7 (Flash.ocx) allows remote malicious users to execute arbitrary code via a SWF file with a modified frame type identifier that is used as an out-of-bounds array index to a function pointer.
Macromedia Flash Player 7.0.19.0
Macromedia Flash Player 7.0 R19
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 6.0.47.0
Macromedia Flash Player 6.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0.65.0
Macromedia Flash Player 6.0.79.0
454
VMScore
CVE-2005-1766
Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions prior to 10.0.5 on Linux, allows remote malicious users to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file.
Realnetworks Realplayer
454
VMScore
CVE-2003-1107
The DHTML capability in Microsoft Windows Media Player (WMP) 6.4, 7.0, 7.1, and 9 may run certain URL commands from a security zone that is less trusted than the current zone, which allows malicious users to bypass intended access restrictions.
Microsoft Windows Media Player 7
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 6.4
Microsoft Windows Media Player 9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »