CVE-2007-4884 - Media Player Classic (MPC) allows user-assisted remote attackers to cause a denial of service (appli

CVE-2007-4884

Summary

Media Player Classic (MPC) allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed .au file that triggers a divide-by-zero error.

References

http://archives.neohapsis.com/archives/fulldisclosure/2007-09/0154.html
http://osvdb.org/37377

Vulnerable Configurations

cpe:2.3:a:media_player_classic:media_player_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:media_player_classic:media_player_classic:*:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 15-11-2008 - 06:58)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:P

refmap via4

fulldisc	20070911 RealPlayer/HelixPlayer .au Divide-By-Zero Denial of Service Vulnerability
osvdb	37377

Last major update

15-11-2008 - 06:58

Published

14-09-2007 - 00:17

Last modified

15-11-2008 - 06:58