CVE-2007-0466

Telestream Flip4Mac <2.1.0.33 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0466. PoCs published by kf.

AI-analyzed exploit summary The provided text describes a remote memory-corruption vulnerability in Flip4Mac due to improper handling of malformed WMV files, potentially leading to arbitrary code execution or DoS. The actual exploit is referenced as a separate WMV file.

Description

Telestream Flip4Mac Windows Media Components for Quicktime 2.1.0.33 allows remote attackers to execute arbitrary code via a crafted ASF_File_Properties_Object size field in a WMV file, which triggers memory corruption.

Exploits (1)

exploitdb WRITEUP VERIFIED
by kf · textdososx
https://www.exploit-db.com/exploits/29535

The provided text describes a remote memory-corruption vulnerability in Flip4Mac due to improper handling of malformed WMV files, potentially leading to arbitrary code execution or DoS. The actual exploit is referenced as a separate WMV file.

Classification
Writeup 80%
Attack Type
Rce | Dos
Complexity
Moderate
Reliability
Theoretical
Target: Flip4Mac Windows Media Components for QuickTime version 2.1.0.33
No auth needed
Prerequisites: Malformed WMV file · Victim interaction to open the file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/32697
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/22286
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23958
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0389

Scores

EPSS 0.0615
EPSS Percentile 92.5%

Details

Status published
Products (1)
telestream/flip4mac_windows_media_components_for_quicktime 2.1.0.33
Published Jan 31, 2007
Tracked Since Feb 18, 2026