CVE-2007-3037

Published: Aug 14, 2007Modified: Apr 23, 2026

4.0

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:N

Exploitability: 4.9 / Impact: 4.9

Source: NVD

Description

Microsoft Windows Media Player 7.1, 9, 10, and 11 allows remote attackers to execute arbitrary code via a skin file (WMZ or WMD) with crafted header information that causes a size mismatch between compressed and decompressed data and triggers a heap-based buffer overflow, aka "Windows Media Player Code Execution Vulnerability Parsing Skins."

Affected (4)

Products: Microsoft: Windows Media Player

1 product

Windows Media Player

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows Media Player	Version 10
Microsoft Windows Media Player	Version 11
Microsoft Windows Media Player	Version 7.1
Microsoft Windows Media Player	Version 9

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (20)

http://secunia.com/advisories/26433

Source: secure@microsoft.com

Vendor Advisory

http://securitytracker.com/id?1018565

Source: secure@microsoft.com

http://www.osvdb.org/36385

Source: secure@microsoft.com

http://www.securityfocus.com/archive/1/476533/100/0/threaded

Source: secure@microsoft.com

http://www.securityfocus.com/bid/25307

Source: secure@microsoft.com

http://www.us-cert.gov/cas/techalerts/TA07-226A.html

Source: secure@microsoft.com

US Government Resource

http://www.vupen.com/english/advisories/2007/2871

Source: secure@microsoft.com

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-07-046.html

Source: secure@microsoft.com

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-047

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2207

Source: secure@microsoft.com

http://secunia.com/advisories/26433

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1018565

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/36385

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/476533/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/25307

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.us-cert.gov/cas/techalerts/TA07-226A.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.vupen.com/english/advisories/2007/2871

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-07-046.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-047

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2207

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.