Vulnerability Details CVE-2007-6402
Stack-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6401.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.06
EPSS Ranking 90.2%
CVSS Severity
CVSS v2 Score 9.3
References
- http://www.securityfocus.com/archive/1/484781/100/0/threaded
- http://www.securityfocus.com/archive/1/484832/100/100/threaded
- http://www.securityfocus.com/bid/26774
- http://www.securitytracker.com/id?1019064
- http://www.vupen.com/english/advisories/2007/4141
- http://www.securityfocus.com/archive/1/484781/100/0/threaded
- http://www.securityfocus.com/archive/1/484832/100/100/threaded
- http://www.securityfocus.com/bid/26774
- http://www.securitytracker.com/id?1019064
- http://www.vupen.com/english/advisories/2007/4141
Products affected by CVE-2007-6402
-
cpe:2.3:a:3ivx:mpeg-4_codec:4.5.1
-
cpe:2.3:a:3ivx:mpeg-4_codec:5.0.1
-
cpe:2.3:a:guliverkli:media_player_classic:6.4.9.0