Vulnerability Note VU#187528

Microsoft Windows Media Player buffer overflow in Active Stream Redirector (.asx) file parser

Overview

There is a buffer overflow in the parsing of Active Stream Redirector (.ASX) files. This buffer overflow may allow a remote attacker to execute arbitrary code when a user views a malicious web page.

I. Description

There is a buffer overflow in the processing of Active Stream Redirector (.ASX) files in Windows Media Player version 6.4 and 7. An Active Stream Redirector is a file type used by Windows Media Player to determine where a media stream can be found on the Internet, and how to play it.

This vulnerability is a variant of the vulnerability described in VU#675320 and MS00-090.

II. Impact

An attacker may be able to execute arbitrary code on vulnerable systems when the user visits a web page.

III. Solution

Apply a Patch

Microsoft has published patches correcting this vulnerability. The patches are listed in their advisory at:

http://www.microsoft.com/technet/security/bulletin/MS01-029.asp

Systems Affected

Vendor	Status	Date Notified	Date Updated
Microsoft Corporation	Vulnerable	16-Jul-2002

References

http://www.microsoft.com/technet/security/bulletin/MS01-029.asp
http://www.microsoft.com/technet/security/bulletin/ms00-090.asp
http://www.microsoft.com/technet/security/bulletin/fq00-090.asp

Credit

This document was written by Cory F. Cohen.

Other Information

Date Public:	2001-05-23
Date First Published:	2002-09-27
Date Last Updated:	2002-09-27
CERT Advisory:
CVE-ID(s):	CAN-2001-0242
NVD-ID(s):	CAN-2001-0242
US-CERT Technical Alerts:
Severity Metric:	4.43
Document Revision:	7

If you have feedback, comments, or additional information about this vulnerability, please send us email.