Multiple Microsoft Windows Media Player vulnerabilities updated since 15.02.2006
Published:		22.02.2006
Source:		BUGTRAQ
SecurityVulns ID:		5769
Type:		client
Level:		8/10
Description:		Buffer overflow on BMP files playing. Buffer overflow on oversized SRC for HTML page with EMBED'ded WMP. May be used for client machine trojaning.

Affected:		MICROSOFT : Windows 2000 Server
		MICROSOFT : Windows 2000 Professional
		MICROSOFT : Windows XP
		MICROSOFT : Windows 2003 Server

Original document		MICROSOFT, Microsoft Security Bulletin MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564) (15.02.2006)
		MICROSOFT, Microsoft Security Bulletin MS06-005 Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565) (15.02.2006)
		CERT, US-CERT Technical Cyber Security Alert TA06-045A -- Microsoft Windows, Windows Media Player, and Internet Explorer Vulnerabilities (15.02.2006)
		EEYE, [EEYEB-20051017] Windows Media Player BMP Heap Overflow (15.02.2006)
		IDEFENSE, iDefense Security Advisory 02.14.06: Microsoft Windows Media Player Plugin Buffer Overflow Vulnerability (15.02.2006)

Files:		Exploits Windows Media Player BMP Heap Overflow (MS06-005)
		Exploits Bulletin MS06-005 Vulnerability in Windows Media Player Could Allow Remote Code Execution
		Windows Media Player Plug-in for Non-Microsoft Browsers Code Execution (MS06-006) - Exploit II
		Windows Media Player Plug-in for Non-Microsoft Browsers Code Execution (MS06-006)
		Exploiting 'Non-Critical' Media Player Vulnerabilities for Fun and Profit
		Microsoft Security Bulletin MS06-005 Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565)
		Microsoft Security Bulletin MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564)
Discuss:		Read or add your comments to this news (0 comments)