Denial of Service Vulnerability in Microsoft Windows Media Player
CVE-2007-6236

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Media Player
Vendor: CVE Published:; 4 December 2007

Summary

A denial of service vulnerability exists in Microsoft Windows Media Player when processing specific AIFF files that cause an application crash due to a divide-by-zero error. Attackers can exploit this flaw to create a malicious AIFF file, leading to unexpected application behavior and potential system instability. The issue highlights the importance of secure handling of multimedia files within player applications.

References

https://www.exploit-db.com/exploits/4682

exploitx_refsource_EXPLOIT-DB

http://osvdb.org/43715

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/38797

vdb-entryx_refsource_XF

EPSS Score

36% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 4, 2007
Vulnerability Reserved
Dec 4, 2007