Описание
Microsoft Windows Media Player 10 through 12 allows remote attackers to execute arbitrary code via a crafted DataObject on a web site, aka "Windows Media Player RCE via DataObject Vulnerability."
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:windows_media_player:10:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:10.00.00.3646:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:10.00.00.3990:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:10.00.00.4019:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:10.00.00.4036:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:11:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:11.0.5721.5145:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:11.0.5721.5230:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:11.0.6000.6324:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:12:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.26887
Средний
9.3 Critical
CVSS2
Дефекты
CWE-17
Связанные уязвимости
github
больше 3 лет назад
Microsoft Windows Media Player 10 through 12 allows remote attackers to execute arbitrary code via a crafted DataObject on a web site, aka "Windows Media Player RCE via DataObject Vulnerability."
fstec
больше 10 лет назад
Уязвимость медиаплеера Windows Media Player, позволяющая нарушителю выполнить произвольный код
EPSS
Процентиль: 96%
0.26887
Средний
9.3 Critical
CVSS2
Дефекты
CWE-17