Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of the .ASX Buffer Overrun vulnerability as discussed in MS:MS00-090.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_media_player | Microsoft | 6.3 (including) | 6.3 (including) |
| Windows_media_player | Microsoft | 6.4 (including) | 6.4 (including) |
| Windows_media_player | Microsoft | 7 (including) | 7 (including) |
References
- http://www.kb.cert.org/vuls/id/187528
- http://www.securityfocus.com/archive/1/181419
- http://www.securityfocus.com/archive/1/183906
- http://www.securityfocus.com/bid/2677
- http://www.securityfocus.com/bid/2686
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5574
- http://www.kb.cert.org/vuls/id/187528
- http://www.securityfocus.com/archive/1/181419
- http://www.securityfocus.com/archive/1/183906
- http://www.securityfocus.com/bid/2677
- http://www.securityfocus.com/bid/2686
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5574