Vulnerabilities > CVE-2002-1847 - Unspecified vulnerability in Microsoft Windows Media Player

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

microsoft

exploit available

NVD

Published: 2002-12-31

Updated: 2021-06-15

Summary

Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument. NOTE: since the only known attack vector requires command line access, this may not be a vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Windows Media Player 6.3 Microsoft Windows Media Player 6.4 Microsoft Windows Media Player 7 Microsoft Windows Media Player 7.1 Microsoft Windows Media Player -	5

Exploit-Db

description	Microsoft Windows Media Player 6/7 Filename Buffer Overflow Vulnerability. CVE-2002-1847. Remote exploit for windows platform
id	EDB-ID:21670
last seen	2016-02-02
modified	2002-07-30
published	2002-07-30
reporter	ken@FTU
source	https://www.exploit-db.com/download/21670/
title	Microsoft Windows Media Player 6/7 Filename Buffer Overflow Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References