CVE-2006-0005

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 2003 Server; Windows Server 2003; Windows Xp; Windows 2000
Vendor: CVE Published:; 14 February 2006

Summary

Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src attribute.

References

http://www.vupen.com/english/advisories/2006/0575

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/16644

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/24493

vdb-entryx_refsource_XF

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 14, 2006
Vulnerability Reserved
Nov 9, 2005

Collectors

NVD DatabaseMitre Database