Buffer Overflow Vulnerability in Microsoft Windows Media Player
CVE-2010-0718

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Media Player
Vendor: CVE Published:; 26 February 2010

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 23%

What is CVE-2010-0718?

A buffer overflow vulnerability exists in Microsoft Windows Media Player 9 and 11.0.5721.5145 that can be exploited by remote attackers. By crafting a malicious .mpg file and tricking the user into opening it, attackers can cause a denial of service, leading to a divide-by-zero error and resulting in the application crashing. This vulnerability underscores the importance of ensuring safe playback of media files and reinforces the need for regular software updates to mitigate risks.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2010-0718 - Proof of Concept

References

http://www.exploit-db.com/exploits/11531

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/56435

vdb-entryx_refsource_XF

EPSS Score

23% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Feb 26, 2010
👾
Exploit known to exist
Feb 26, 2010
Vulnerability published
Feb 26, 2010
Vulnerability Reserved
Feb 26, 2010

CVE-2010-0718 Data

JSON