CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1847

Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument. NOTE: since the only known attack vector requires command line access, this may not be a vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.063

EPSS Ranking 90.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://online.securityfocus.com/archive/1/285082
http://www.iss.net/security_center/static/9727.php
http://www.securityfocus.com/bid/5357
http://online.securityfocus.com/archive/1/285082
http://www.iss.net/security_center/static/9727.php
http://www.securityfocus.com/bid/5357

Products affected by CVE-2002-1847

Microsoft » Windows Media Player » Version: N/A

cpe:2.3:a:microsoft:windows_media_player:-
Microsoft » Windows Media Player » Version: 6.3

cpe:2.3:a:microsoft:windows_media_player:6.3
Microsoft » Windows Media Player » Version: 6.4

cpe:2.3:a:microsoft:windows_media_player:6.4
Microsoft » Windows Media Player » Version: 7

cpe:2.3:a:microsoft:windows_media_player:7
Microsoft » Windows Media Player » Version: 7.1

cpe:2.3:a:microsoft:windows_media_player:7.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1847

Products

Pricing

Contact Us