7.6
CVE-2007-3035
- EPSS 25%
- Veröffentlicht 14.08.2007 21:17:00
- Zuletzt bearbeitet 16.06.2026 22:40:55
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in Microsoft Windows Media Player 7.1, 9, 10, and 11 allows remote attackers to execute arbitrary code via a skin file (WMZ or WMD) with crafted header information that is not properly handled during decompression, aka "Windows Media Player Code Execution Vulnerability Decompressing Skins."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows Media Player Version7.1
Microsoft ≫ Windows Media Player Version9
Microsoft ≫ Windows Media Player Version10
Microsoft ≫ Windows Media Player Version11
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 25% | 0.976 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.6 | 4.9 | 10 |
AV:N/AC:H/Au:N/C:C/I:C/A:C
|
http://www.us-cert.gov/cas/techalerts/TA07-226A.html
http://secunia.com/advisories/26433
http://securitytracker.com/id?1018565
http://www.securityfocus.com/archive/1/476548/100/0/threaded
http://www.securityfocus.com/bid/25305
http://www.vupen.com/english/advisories/2007/2871
http://www.zerodayinitiative.com/advisories/ZDI-07-047.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-047
https://exchange.xforce.ibmcloud.com/vulnerabilities/35895
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1352