CVE-2006-0005

Description

Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src attribute.

Related CPE's

Could not find any relations

References

20060214 Microsoft Windows Media Player Plugin Buffer Overflow Vulnerability

VU#692060

US Government Resource

TA06-045A

US Government Resource

16644

1015628

18852

Vendor Advisory

ADV-2006-0575

win-mediaplayer-plugin-embed-bo(24493)

oval:org.mitre.oval:def:1559

MS06-006

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:M/Au:N/C:C/I:C/A:C

AccessVector

NETWORK

AccessComplexity

MEDIUM

Authentication

NONE

ConfidentialityImpact

COMPLETE

IntegrityImpact

COMPLETE

AvailabilityImpact

COMPLETE

BaseScore

9.300000190734863

Created by Yello
About Severity.io