CVE-2006-0006 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-0006
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0006

Description: Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap (.BMP) file that specifies a size of 0 but contains additional data.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/24488 ST 1015627 SREASON http://securityreason.com/securityalert/423 SAID Secunia Advisory: SA18835 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1598 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1578 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1256 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1661 MS http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx MISC http://www.eeye.com/html/research/advisories/AD20060214.html CERT-VN 291396 CERT http://www.us-cert.gov/cas/techalerts/TA06-045A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/425158/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/424983/100/0/threaded BID 16633

Return to the previous page.