CVE-2007-6402

Media Player Classic <6.4.9 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6401.

Exploits (1)

exploitdb WORKING POC VERIFIED

by SYS 49152 · perllocalwindows

https://www.exploit-db.com/exploits/4701

View Code ZIP pw:eip

References (5)

[Exploit] http://www.securityfocus.com/bid/26774

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/484832/100/100/threaded

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/4141

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/484781/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1019064

Scores

EPSS 0.0574

EPSS Percentile 90.5%

Details

CWE

CWE-119

Status published

Products (3)

3ivx/mpeg-4_codec 4.5.1

3ivx/mpeg-4_codec 5.0.1

guliverkli/media_player_classic 6.4.9.0

Published Dec 17, 2007

Tracked Since Feb 18, 2026