Heap-based Buffer Overflow in Microsoft Windows Media Player by Microsoft
CVE-2009-2527

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Media Player
Vendor: CVE Published:; 14 October 2009

What is CVE-2009-2527?

A heap-based buffer overflow in Microsoft Windows Media Player 6.4 enables remote attackers to execute arbitrary code on the affected system by delivering a specially crafted ASF file or streaming content. This vulnerability could allow attackers to gain control over the user’s machine, making it crucial for users to apply the necessary updates and patches to mitigate the risks associated with this security flaw.

References

http://www.us-cert.gov/cas/techalerts/TA09-286A.html

third-party-advisoryx_refsource_CERT

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

62% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2009
Vulnerability Reserved
Jul 17, 2009