Lucene search

MitreCVE-2008-4927

HistoryNov 04, 2008 - 9:00 p.m.

CVE-2008-4927

2008-11-0421:00:05

CWE-20

mitre

web.nvd.nist.gov

microsoft

windows

media player

wmp

cve-2008-4927

denial of service

midi

dat

application crash

security vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

High

EPSS

0.944

Percentile

99.3%

JSON

Microsoft Windows Media Player (WMP) 9.0 through 11 allows user-assisted attackers to cause a denial of service (application crash) via a malformed (1) MIDI or (2) DAT file, related to “MThd Header Parsing.” NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd

Node

microsoftwindows_media_playerMatch9

microsoftwindows_media_playerMatch10

microsoftwindows_media_playerMatch11

VendorProductVersionCPE
microsoftwindows_media_player9cpe:2.3:a:microsoft:windows_media_player:9:*:*:*:*:*:*:*
microsoftwindows_media_player10cpe:2.3:a:microsoft:windows_media_player:10:*:*:*:*:*:*:*
microsoftwindows_media_player11cpe:2.3:a:microsoft:windows_media_player:11:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_media_player	9	cpe:2.3:a:microsoft:windows_media_player:9:::::::*
microsoft	windows_media_player	10	cpe:2.3:a:microsoft:windows_media_player:10:::::::*
microsoft	windows_media_player	11	cpe:2.3:a:microsoft:windows_media_player:11:::::::*

References

www.securityfocus.com/bid/32077

www.securityfocus.com/data/vulnerabilities/exploits/32077.py

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

High

EPSS

0.944

Percentile

99.3%

JSON

Related for CVE-2008-4927