Aggregates CVE and security vulnerability intelligence across all mpc-hc-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk buffer overflow and vendor risk denial of service, with potential vendor impact application crash and vendor impact memory corruption across vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2013-3489 | Buffer overflow in Media Player Classic - Home Cinema (MPC-HC) before 1.7.0 allows remote attackers to execute arbitrary code via a crafted RealMedia .rm file | [email protected] | 7.8 | 3.75% | 2020-01-31 | 2024-11-21 |
| CVE-2013-3488 | Stack-based buffer overflow in Media Player Classic - Home Cinema (MPC-HC) before 1.7.0.7858 allows remote attackers to execute arbitrary code via a crafted MPEG-2 Transport Stream (M2TS) file. | [email protected] | 7.8 | 3.75% | 2020-01-31 | 2024-11-21 |
| CVE-2019-17260 | MPC-HC through 1.7.13 allows a Read Access Violation on a Block Data Move starting at mpc_hc!memcpy+0x000000000000004e. | [email protected] | 7.8 | 0.09% | 2019-10-08 | 2024-11-21 |
| CVE-2007-2723 | Media Player Classic 6.4.9.0 allows user-assisted remote attackers to cause a denial of service (web browser crash) via an "empty" .MPA file, which triggers a divide-by-zero error. | [email protected] | 5.5 | 0.80% | 2007-05-16 | 2026-04-23 |