CVE-2007-4940
published 2007-09-18CVE-2007-4940: Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and…
PriorityP430critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
4.37%
90.1th percentile
Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| guliverkli | media_player_classic | <= 6.4.9.0 | — |
| mympc | cd-storm | — | — |
| rob_schultz | media_player_classic | — | — |
| verycd | stormplayer | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hpcf-9656-v2qr: Integer overflow in Media Player Classic 6
ghsa_unreviewed·2022-05-02·CVSS 9.3
CVE-2009-3201 [CRITICAL] GHSA-hpcf-9656-v2qr: Integer overflow in Media Player Classic 6
Integer overflow in Media Player Classic 6.4.9 allows user-assisted remote attackers to cause a denial of service (application crash) via a MIDI file (.mid) with a malformed header, which triggers a buffer overflow, a different vulnerability than CVE-2007-4940.
GHSA
GHSA-j8mf-vg8w-fx4p: Multiple integer overflows in Media Player Classic (MPC) 6
ghsa_unreviewed·2022-05-01
CVE-2007-4940 [HIGH] GHSA-j8mf-vg8w-fx4p: Multiple integer overflows in Media Player Classic (MPC) 6
Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://securityreason.com/securityalert/3144http://www.securityfocus.com/archive/1/479222/100/0/threadedhttp://www.securityfocus.com/bid/25650http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/36584http://securityreason.com/securityalert/3144http://www.securityfocus.com/archive/1/479222/100/0/threadedhttp://www.securityfocus.com/bid/25650http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/36584
2007-09-18
Published