Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-4939Improper Restriction of Operations within the Bounds of a Memory Buffer in Media Player Classic

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
9.3CRITICALNVD
EPSS
23.2%
top 4.05%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
Guliverkli Media Player ClassicMympc Cd-stormVerycd Stormplayer
Timeline
PublishedSep 18
Latest updateMay 1

Description

Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with an "indx truck size" of 0xffffffff, and certain wLongsPerEntry and nEntriesInuse values.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

NVDmympc/cd-storm1.0.0.1

🔴Vulnerability Details

2
GHSA
GHSA-h42m-cfwq-x7m7: Heap-based buffer overflow in mplayerc2022-05-01
CVEList
CVE-2007-4939: Heap-based buffer overflow in mplayerc2007-09-18

💥Exploits & PoCs

1
Exploit-DB
Media Player Classic 6.4.9 - Malformed AVI Header Multiple Remote Vulnerabilities2007-09-12
CVE-2007-4939 — Media Player Classic vulnerability | cvebase