Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2009-2527
HistoryOct 14, 2009 - 10:30 a.m.

CVE-2009-2527

2009-10-1410:30:01
CWE-119
microsoft
web.nvd.nist.gov
24
cve-2009-2527
heap-based overflow
microsoft windows media player
remote code execution
asf file
streaming content
vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.803

Percentile

98.3%

JSON

Heap-based buffer overflow in Microsoft Windows Media Player 6.4 allows remote attackers to execute arbitrary code via (1) a crafted ASF file or (2) crafted streaming content, aka β€œWMP Heap Overflow Vulnerability.”

Affected configurations

Nvd
Node
microsoftwindows_2000Matchsp4
OR
microsoftwindows_2003_serverMatchsp2
OR
microsoftwindows_2003_serverMatchsp2x64
OR
microsoftwindows_xpsp2pro_x64
OR
microsoftwindows_xpMatch-
OR
microsoftwindows_xpMatchsp3
AND
microsoftwindows_media_playerMatch6.4
VendorProductVersionCPE
microsoftwindows_2000sp4cpe:2.3:o:microsoft:windows_2000:sp4:*:*:*:*:*:*:*
microsoftwindows_2003_serversp2cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
microsoftwindows_2003_serversp2cpe:2.3:o:microsoft:windows_2003_server:sp2:*:x64:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp2:pro_x64:*:*:*:*:*
microsoftwindows_xp-cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*
microsoftwindows_xpsp3cpe:2.3:o:microsoft:windows_xp:sp3:*:*:*:*:*:*:*
microsoftwindows_media_player6.4cpe:2.3:a:microsoft:windows_media_player:6.4:*:*:*:*:*:*:*

Related

openvas 2
prion 1
nessus 1
seebug 1
checkpoint_advisories 2
securityvulns 2
cvelist 1
nvd 1
openvas
openvas
Microsoft Windows Media Player ASF Heap Overflow Vulnerability (974112)
2009-10-14 00:00:00
Microsoft Windows Media Player ASF Heap Overflow Vulnerability (974112)
2009-10-14 00:00:00
prion
prion
Heap overflow
2009-10-14 10:30:00
nessus
nessus
MS09-052: Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)
2009-10-13 00:00:00
seebug
seebug
Microsoft Windows Media Player ASFζ–‡δ»Άε€„η†θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž(MS09-052)
2009-10-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Media Player HeaderExtensionObject Heap Overflow (MS09-052) - Ver2 (CVE-2009-2527)
2014-03-03 00:00:00
Microsoft Media Player HeaderExtensionObject Heap Overflow (MS09-052; CVE-2009-2527)
2009-10-13 00:00:00
securityvulns
securityvulns
Microsoft Windows Media Player buffer overflow
2009-10-13 00:00:00
Microsoft Security Bulletin MS09-052 - Critical Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)
2009-10-13 00:00:00
cvelist
cvelist
CVE-2009-2527
2009-10-14 10:00:00
nvd
nvd
CVE-2009-2527
2009-10-14 10:30:01

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.803

Percentile

98.3%

JSON
Related for CVE-2009-2527
openvas2prion1nessus1seebug1checkpoint_advisories2securityvulns2cvelist1nvd1