CVE-2007-0064
Last modified
CVE-2007-0064 is a vulnerability of currently unknown severity. Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services 9.1 for Microsoft Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.. EPSS estimates a 35.98% chance of exploitation in the next 30 days.
Description
Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services 9.1 for Microsoft Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Media Format Runtime | 7.1 |
| Microsoft | Windows Media Format Runtime | 9 |
| Microsoft | Windows Media Format Runtime | 9.5 |
| Microsoft | Windows Media Format Runtime | 11 |
| Microsoft | Windows Media Services | 9.1 |
References
- http://secunia.com/advisories/28034Vendor Advisory
- http://www.kb.cert.org/vuls/id/319385US Government Resource
- http://www.us-cert.gov/cas/techalerts/TA07-345A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2007/4183Vendor Advisory
- http://secunia.com/advisories/28034Vendor Advisory
- http://www.kb.cert.org/vuls/id/319385US Government Resource
- http://www.us-cert.gov/cas/techalerts/TA07-345A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2007/4183Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-0064?
How severe is CVE-2007-0064?
How do I fix CVE-2007-0064?
Are you affected by CVE-2007-0064?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST