New Search

Windows Media Player Plug-in EMBED Vulnerability

oval:org.mitre.oval:def:1559

Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10 when used in browsers other than Internet Explorer and set as the default application to handle media files allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src attribute.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2006-0005
Product(s):
  • Windows Media Player