Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2008-5745
HistoryDec 29, 2008 - 3:24 p.m.

CVE-2008-5745

2008-12-2915:24:23
CWE-189
mitre
web.nvd.nist.gov
32
cve-2008-5745
integer overflow
quartz.dll
directshow framework
windows media player
denial of service
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.944

Percentile

99.3%

JSON

Integer overflow in quartz.dll in the DirectShow framework in Microsoft Windows Media Player (WMP) 9, 10, and 11, including 11.0.5721.5260, allows remote attackers to cause a denial of service (application crash) via a crafted (1) WAV, (2) SND, or (3) MID file. NOTE: this has been incorrectly reported as a code-execution vulnerability. NOTE: it is not clear whether this issue is related to CVE-2008-4927.

Affected configurations

Nvd
Node
microsoftwindows_media_playerMatch9
OR
microsoftwindows_media_playerMatch10
OR
microsoftwindows_media_playerMatch11
VendorProductVersionCPE
microsoftwindows_media_player9cpe:2.3:a:microsoft:windows_media_player:9:*:*:*:*:*:*:*
microsoftwindows_media_player10cpe:2.3:a:microsoft:windows_media_player:10:*:*:*:*:*:*:*
microsoftwindows_media_player11cpe:2.3:a:microsoft:windows_media_player:11:*:*:*:*:*:*:*

Related

prion 2
cvelist 2
nvd 2
exploitdb 2
openvas 4
cve 1
prion
prion
Integer overflow
2008-12-29 15:24:00
Information disclosure
2008-11-04 21:00:00
cvelist
cvelist
CVE-2008-5745
2008-12-29 15:00:00
CVE-2008-4927
2008-11-04 20:00:00
nvd
nvd
CVE-2008-5745
2008-12-29 15:24:23
CVE-2008-4927
2008-11-04 21:00:05
exploitdb
exploitdb
Microsoft Windows Media Player 9/10/11 - '.WAV' File Parsing Code Execution
2008-12-29 00:00:00
Microsoft Windows Media Player - '.wav' Remote Crash (PoC)
2008-12-28 00:00:00
openvas
openvas
Integer Overflow vulnerability in Microsoft Windows Media Player
2009-01-06 00:00:00
Integer Overflow vulnerability in Microsoft Windows Media Player
2009-01-06 00:00:00
Microsoft Windows Media Player 'MIDI' or 'DAT' File DoS Vulnerability
2008-11-11 00:00:00
cve
cve
CVE-2008-4927
2008-11-04 21:00:05

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.944

Percentile

99.3%

JSON
Related for CVE-2008-5745
prion2cvelist2nvd2exploitdb2openvas4cve1