Home

CVE-2009-2527

Description

Heap-based buffer overflow in Microsoft Windows Media Player 6.4 allows remote attackers to execute arbitrary code via (1) a crafted ASF file or (2) crafted streaming content, aka WMP Heap Overflow Vulnerability.

Risk Information

Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
47.921

Associated Vulnerability

VulnerabilityOS Platform
Security Update for Windows 2000 (KB974112)Windows
Security Update for Windows XP (KB974112) x86 based systemsWindows
Security Update for Windows XP (KB974112) x86 based systems for SP3Windows
Security Update for Windows XP x64 Edition (KB974112)Windows
Security Update for Windows Server 2003 (KB974112)Windows
Security Update for Windows Server 2003 x64 Edition (KB974112)Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234