PT-2007-5479 · Microsoft · Windows Media Player
Published
2007-08-09
·
Updated
2024-02-14
·
CVE-2007-4288
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Microsoft Windows Media Player version 11
Description
The issue allows user-assisted remote attackers to cause a denial of service, resulting in an application crash, via a crafted .au file. This is achieved by triggering a divide-by-zero error.
Recommendations
For Microsoft Windows Media Player version 11, consider avoiding the use of .au files until a fix is available, or restrict access to the
wmplayer.exe to minimize the risk of exploitation.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Windows Media Player