CVE-2008-5745

Integer overflow in quartz.dll in the DirectShow framework in Microsoft Windows Media Player (WMP) 9, 10, and 11, including 11.0.5721.5260, allows remote attackers to cause a denial of service (application crash) via a crafted (1) WAV, (2) SND, or (3) MID file. NOTE: this has been incorrectly reported as a code-execution vulnerability. NOTE: it is not clear whether this issue is related to CVE-2008-4927.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:windows_media_player:9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:10:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_media_player:11:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-12-29 15:24

Updated : 2024-02-04 17:33


NVD link : CVE-2008-5745

Mitre link : CVE-2008-5745

CVE.ORG link : CVE-2008-5745


JSON object : View

Products Affected

microsoft

  • windows_media_player
CWE
CWE-189

Numeric Errors