CVE-2007-0064 : Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services

Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services 9.1 for Microsoft Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.

Published 2007-12-12 00:46:00

Updated 2018-10-30 16:25:38

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Exploit prediction scoring system (EPSS) score for CVE-2007-0064

Probability of exploitation activity in the next 30 days: 85.75%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-0064

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2007-0064

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2007-0064

Products affected by CVE-2007-0064

Microsoft » Windows Media Services » Version: 9.1
cpe:2.3:a:microsoft:windows_media_services:9.1:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 2003 Server » X64 Edition
When used together with: Microsoft » Windows 2003 Server » Update SP1
When used together with: Microsoft » Windows 2003 Server » Update SP2
When used together with: Microsoft » Windows 2003 Server » Update SP2 X64 Edition
Microsoft » Windows Media Format Runtime » Version: 7.1
cpe:2.3:a:microsoft:windows_media_format_runtime:7.1:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 2000 » Update SP4
Microsoft » Windows Media Format Runtime » Version: 9
cpe:2.3:a:microsoft:windows_media_format_runtime:9:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 2000 » Update SP4
When used together with: Microsoft » Windows Xp » Update SP2
Microsoft » Windows Media Format Runtime » Version: 9.5
cpe:2.3:a:microsoft:windows_media_format_runtime:9.5:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 2003 Server » X64 Edition
When used together with: Microsoft » Windows 2003 Server » Update SP1
When used together with: Microsoft » Windows 2003 Server » Update SP2
When used together with: Microsoft » Windows 2003 Server » Update SP2 X64 Edition
When used together with: Microsoft » Windows Xp » X64 Edition
When used together with: Microsoft » Windows Xp » Update SP2
When used together with: Microsoft » Windows Xp » Update SP2 X64 Edition
Microsoft » Windows Media Format Runtime » Version: 9.5 X64 Edition
cpe:2.3:a:microsoft:windows_media_format_runtime:9.5:*:x64:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 2003 Server » X64 Edition
When used together with: Microsoft » Windows 2003 Server » Update SP2 X64 Edition
When used together with: Microsoft » Windows Xp » X64 Edition
When used together with: Microsoft » Windows Xp » Update SP2 X64 Edition
Microsoft » Windows Media Format Runtime » Version: 11
cpe:2.3:a:microsoft:windows_media_format_runtime:11:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows Vista » X64 Edition
When used together with: Microsoft » Windows Vista » Version: N/A
When used together with: Microsoft » Windows Xp » X64 Edition
When used together with: Microsoft » Windows Xp » Update SP2
When used together with: Microsoft » Windows Xp » Update SP2 X64 Edition

Vulnerability Details : CVE-2007-0064

Exploit prediction scoring system (EPSS) score for CVE-2007-0064

CVSS scores for CVE-2007-0064

CWE ids for CVE-2007-0064

References for CVE-2007-0064

Products affected by CVE-2007-0064