Vulnerabilities > CVE-2009-1331 - Numeric Errors vulnerability in Microsoft Windows Media Player 11.0.5721.5260

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
microsoft
CWE-189
critical
exploit available
NVD
Published: 2009-04-17
Updated: 2017-09-29

Summary

Integer overflow in Microsoft Windows Media Player (WMP) 11.0.5721.5260 allows remote attackers to cause a denial of service (application crash) via a crafted .mid file, as demonstrated by crash.mid.

Vulnerable Configurations

Part Description Count
Application
Microsoft
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionMS Windows Media Player (.mid File) Integer Overflow PoC. CVE-2009-1331. Dos exploit for windows platform
fileexploits/windows/dos/8445.pl
idEDB-ID:8445
last seen2016-02-01
modified2009-04-15
platformwindows
port
published2009-04-15
reporterHuoFu
sourcehttps://www.exploit-db.com/download/8445/
titleMicrosoft Windows Media Player - .mid Integer Overflow PoC
typedos

References