Vulnerability Note VU#692060
Microsoft Windows Media Player plug-in buffer overflow
The Microsoft Windows Media Player plug-in for browsers other than Internet Explorer contains a buffer overflow, which may allow a remote attacker to execute arbitrary code.
Windows Media Player
Windows Media Player is a multimedia application that comes with Microsoft Windows.
By convincing a user to view a specially crafted HTML document (e.g., a web page or an HTML email message), an attacker may be able to execute arbitrary code with the privileges of the user. The attacker could also cause the browser (or any program using the Windows Media Player plug-in) to crash.
Apply an update
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||14 Feb 2006|
CVSS Metrics (Learn More)
This vulnerability was disclosed by Microsoft, who in turn credit John Cobb of iDefense for reporting the vulnerability.
This document was written by Will Dormann.
- CVE IDs: CVE-2006-0005
- Date Public: 14 Feb 2006
- Date First Published: 14 Feb 2006
- Date Last Updated: 22 Feb 2006
- Severity Metric: 36.12
- Document Revision: 9
If you have feedback, comments, or additional information about this vulnerability, please send us email.