CVE-2007-2723

MEDIUM

Media Player Classic 6.4.9.0 - DoS

Title source: llm

Description

Media Player Classic 6.4.9.0 allows user-assisted remote attackers to cause a denial of service (web browser crash) via an "empty" .MPA file, which triggers a divide-by-zero error.

References (5)

[Broken Link] http://osvdb.org/37376

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/468626/100/0/threaded

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/468758/100/0/threaded

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/23991

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34299

Scores

CVSS v3 5.5

EPSS 0.0080

EPSS Percentile 73.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-369

Status draft

Affected Products (1)

mpc-hc/media_player_classic

Timeline

Published May 16, 2007

Tracked Since Feb 18, 2026