The Microsoft Windows Media Player plug-in for browsers other than Internet Explorer contains a buffer overflow, which may allow a remote attacker to execute arbitrary code.
Windows Media Player
Windows Media Player is a multimedia application that comes with Microsoft Windows.
By convincing a user to view a specially crafted HTML document (e.g., a web page or an HTML email message), an attacker may be able to execute arbitrary code with the privileges of the user. The attacker could also cause the browser (or any program using the Windows Media Player plug-in) to crash.
Apply an update
This vulnerability was disclosed by Microsoft, who in turn credit John Cobb of iDefense for reporting the vulnerability.
This document was written by Will Dormann.
|Date First Published:||2006-02-14|
|Date Last Updated:||2006-02-22 17:53 UTC|