CVE-2006-6134

Exploit

EPSS 69.2%
Published 28.11.2006 01:07:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Heap-based buffer overflow in the WMCheckURLScheme function in WMVCORE.DLL in Microsoft Windows Media Player (WMP) 10.00.00.4036 on Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long HREF attribute, using an unrecognized protocol, in a REF element in an ASX PlayList file.

Affected products Warnungen 0 Metrics 2 CWE 1 References 18

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Media Player Version10.00.00.4036

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	69.2%	0.986

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://www.securityfocus.com/archive/1/454969/100/200/threaded

http://www.us-cert.gov/cas/techalerts/TA06-346A.html

US Government Resource

http://www.securityfocus.com/archive/1/453579/100/0/threaded

http://blogs.technet.com/msrc/archive/2006/12/07/public-proof-of-concept-code-for-asx-file-format-isssue.aspx

http://research.eeye.com/html/alerts/zeroday/20061122.html

http://secunia.com/advisories/22971

Vendor Advisory

http://securityreason.com/securityalert/1922

http://securitytracker.com/id?1017354

http://support.avaya.com/elmodocs2/security/ASA-2006-274.htm

http://www.kb.cert.org/vuls/id/208769