Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0025

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2006-0025
Last Modified 07 Mar 2011 09:29:11
Published 13 Jun 2006 03:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-0025

Summary

Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.

Vulnerable Systems

Application

  • Microsoft Windows Media Player 10

  • Microsoft Windows Media Player 9


References

CERT - TA06-164A

CERT-VN - VU#608020

BID - 18385

MS - MS06-024

IDEFENSE - 20060613 Windows Media Player PNG Chunk Decoding Stack-Based Buffer Overflow

SECUNIA - 20626

XF - win-media-player-png-bo(26788)

VUPEN - ADV-2006-2322

OSVDB - 26430

SECTRACK - 1016284


Last Updated: 27 May 2016 10:41:30