CVE-2007-6478
published 2007-12-20CVE-2007-6478: Stack-based buffer overflow in Rosoft Media Player 4.1.7, 4.1.8, and possibly earlier versions allows remote attackers to execute arbitrary code or cause a…
PriorityP430medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
5.66%
92.0th percentile
Stack-based buffer overflow in Rosoft Media Player 4.1.7, 4.1.8, and possibly earlier versions allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in a .M3U file. NOTE: some of these details are obtained from third party information.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rosoftengineering | rosoft_media_player | <= 4.1.8 | — |
| rosoftengineering | rosoft_media_player | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/28144http://securityreason.com/securityalert/3470http://www.osvdb.org/39501http://www.securityfocus.com/archive/1/485253/100/0/threadedhttp://www.securityfocus.com/archive/1/488131/100/200/threadedhttp://www.securityfocus.com/bid/26920http://www.vupen.com/english/advisories/2007/4259https://exchange.xforce.ibmcloud.com/vulnerabilities/39114https://www.exploit-db.com/exploits/5122http://secunia.com/advisories/28144http://securityreason.com/securityalert/3470http://www.osvdb.org/39501http://www.securityfocus.com/archive/1/485253/100/0/threadedhttp://www.securityfocus.com/archive/1/488131/100/200/threadedhttp://www.securityfocus.com/bid/26920http://www.vupen.com/english/advisories/2007/4259https://exchange.xforce.ibmcloud.com/vulnerabilities/39114https://www.exploit-db.com/exploits/5122
2007-12-20
Published