CVE-2007-4288

Microsoft Windows Media Player 11 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4288. PoCs published by A.Sawan & nophie.

AI-analyzed exploit summary This exploit generates a malformed AU file that triggers a denial-of-service (DoS) condition in Microsoft Windows Media Player 11 when opened. The PoC writes a crafted header to a file named 'iapetus.au', which causes the application to crash upon playback.

Description

Microsoft Windows Media Player 11 (wmplayer.exe) allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted .au file that triggers a divide-by-zero error, as demonstrated by iapetus.au.

Exploits (1)

exploitdb WORKING POC VERIFIED

by A.Sawan & nophie · pythondoswindows

https://www.exploit-db.com/exploits/30462

View Code ZIP pw:eip

This exploit generates a malformed AU file that triggers a denial-of-service (DoS) condition in Microsoft Windows Media Player 11 when opened. The PoC writes a crafted header to a file named 'iapetus.au', which causes the application to crash upon playback.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows Media Player 11

No auth needed

Prerequisites: Ability to deliver the malformed AU file to the target system

MITRE ATT&CK