New Search

Windows Media Player 9 Bitmap Remote Code Execution

oval:org.mitre.oval:def:1661

Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4 Media Player 9 on Windows 2000 SP4 and XP SP1 and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap (.BMP) file that specifies a size of 0 but contains additional data.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows XP
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2006-0006
Product(s):
  • Windows Media Player