Vulnerabilities > CVE-2007-6236 - Numeric Errors vulnerability in Microsoft Windows Media Player 11

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

CWE-189

exploit available

NVD

Published: 2007-12-04

Updated: 2017-09-29

Summary

Microsoft Windows Media Player (WMP) allows remote attackers to cause a denial of service (application crash) via a certain AIFF file that triggers a divide-by-zero error, as demonstrated by kr.aiff.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Windows Media Player 11	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

Exploit-Db

description	Windows Media Player AIFF Divide By Zero Exception DoS PoC. CVE-2007-6236. Dos exploit for windows platform
file	exploits/windows/dos/4682.c
id	EDB-ID:4682
last seen	2016-01-31
modified	2007-11-29
platform	windows
port
published	2007-11-29
reporter	Gil-Dong / Woo-Chi
source	https://www.exploit-db.com/download/4682/
title	Windows Media Player AIFF Divide By Zero Exception DoS PoC
type	dos

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References