Vulnerability Note VU#608020
Microsoft Windows Media Player PNG processing buffer overflow
Microsoft Windows Media Player contains a stack-based buffer overflow vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Windows Media Player
Windows Media Player is a multimedia application that comes with Microsoft Windows.
For more information refer to Microsoft Security Bulletin MS06-024
A remote, unauthenticated attacker may be able to execute arbitrary code. If the attacked user is running with administrative privileges, the attacker could take complete control of an affected system.
Apply a patch from Microsoft
For a list of workarounds refer to Microsoft Security Bulletin MS06-024.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||13 Jun 2006|
CVSS Metrics (Learn More)
This vulnerability was reported in Microsoft Security Bulletin MS06-024. Microsoft credits Greg MacManus of iDEFENSE with providing information related to this vulnerability.
This document was written by Jeff Gennari
- CVE IDs: CVE-2006-0025
- Date Public: 13 Jun 2006
- Date First Published: 13 Jun 2006
- Date Last Updated: 13 Jun 2006
- Severity Metric: 40.72
- Document Revision: 16
If you have feedback, comments, or additional information about this vulnerability, please send us email.