Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-0064
HistoryDec 12, 2007 - 12:46 a.m.

CVE-2007-0064

2007-12-1200:46:00
CWE-119
mitre
web.nvd.nist.gov
27
cve-2007-0064
windows media format runtime
buffer overflow
windows media services
nvd
security vulnerability
windows 2000
windows xp
server 2003
vista

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.858

Percentile

98.6%

JSON

Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services 9.1 for Microsoft Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.

Affected configurations

Nvd
Node
microsoftwindows_2000sp4
AND
microsoftwindows_media_format_runtimeMatch7.1
Node
microsoftwindows_2000sp4
OR
microsoftwindows_xpsp2
AND
microsoftwindows_media_format_runtimeMatch9
Node
microsoftwindows_2003_serverx64
OR
microsoftwindows_2003_serversp1
OR
microsoftwindows_2003_serversp2
OR
microsoftwindows_2003_serversp2x64
OR
microsoftwindows_xpx64
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp2x64
AND
microsoftwindows_media_format_runtimeMatch9.5
Node
microsoftwindows_2003_serverx64
OR
microsoftwindows_2003_serversp2x64
OR
microsoftwindows_xpx64
OR
microsoftwindows_xpsp2x64
AND
microsoftwindows_media_format_runtimeMatch9.5x64
Node
microsoftwindows_vistax64
OR
microsoftwindows_vistaMatch-
OR
microsoftwindows_xpx64
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp2x64
AND
microsoftwindows_media_format_runtimeMatch11
Node
microsoftwindows_2003_serverx64
OR
microsoftwindows_2003_serversp1
OR
microsoftwindows_2003_serversp2
OR
microsoftwindows_2003_serversp2x64
AND
microsoftwindows_media_servicesMatch9.1
VendorProductVersionCPE
microsoftwindows_2000*cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
microsoftwindows_media_format_runtime7.1cpe:2.3:a:microsoft:windows_media_format_runtime:7.1:*:*:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
microsoftwindows_media_format_runtime9cpe:2.3:a:microsoft:windows_media_format_runtime:9:*:*:*:*:*:*:*
microsoftwindows_2003_server*cpe:2.3:o:microsoft:windows_2003_server:*:*:x64:*:*:*:*:*
microsoftwindows_2003_server*cpe:2.3:o:microsoft:windows_2003_server:*:sp1:*:*:*:*:*:*
microsoftwindows_2003_server*cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*
microsoftwindows_2003_server*cpe:2.3:o:microsoft:windows_2003_server:*:sp2:x64:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:*:x64:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp2:x64:*:*:*:*:*
Rows per page:
1-10 of 161

Related

openvas 2
cert 1
securityvulns 2
seebug 1
checkpoint_advisories 1
nvd 1
prion 1
nessus 1
cvelist 1
openvas
openvas
Vulnerability in Windows Media File Format Could Allow Remote Code Execution
2011-01-14 00:00:00
Vulnerability in Windows Media File Format Could Allow Remote Code Execution
2011-01-14 00:00:00
cert
cert
Microsoft Windows Media Format Runtime ASF handling buffer overflow
2007-12-12 00:00:00
securityvulns
securityvulns
Microsoft Windows Media code execution
2007-12-12 00:00:00
Microsoft Security Bulletin MS07-068 - Critical Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 and 944275)
2007-12-12 00:00:00
seebug
seebug
Microsoft Windows Mediaๆ ผๅผๅฎžๆ—ถASFๆ–‡ไปถ่ฟœ็จ‹ไปฃ็ ๆ‰ง่กŒๆผๆดž
2007-12-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Media Format ASF Parsing Code Execution (MS07-068; CVE-2007-0064)
2007-12-18 00:00:00
nvd
nvd
CVE-2007-0064
2007-12-12 00:46:00
prion
prion
Heap overflow
2007-12-12 00:46:00
nessus
nessus
MS07-068: Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 / 944275)
2007-12-11 00:00:00
cvelist
cvelist
CVE-2007-0064
2007-12-12 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.858

Percentile

98.6%

JSON
Related for CVE-2007-0064
openvas2cert1securityvulns2seebug1checkpoint_advisories1nvd1prion1nessus1cvelist1