Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote malicious users to execute arbitrary code via HTML with an EMBED element containing a long src attribute.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows-nt datacenter server |
||
microsoft windows-nt xp |
||
microsoft windows-nt xp tablet pc |
||
microsoft windows 2000 |
||
microsoft windows 2000 - |
||
microsoft windows 2000 advanced server |
||
microsoft windows 2000 advanced server sp1 |
||
microsoft windows 2000 advanced server sp2 |
||
microsoft windows 2000 advanced server sp3 |
||
microsoft windows 2000 advanced server sp4 |
||
microsoft windows 2003 server datacenter edition |
||
microsoft windows 2003 server datacenter edition 64-bit |
||
microsoft windows 2003 server enterprise edition |
||
microsoft windows 2003 server enterprise edition 64-bit |
||
microsoft windows 2003 server standard |
||
microsoft windows 2003 server standard 64-bit |
||
microsoft windows 2003 server web edition |
||
microsoft windows server 2000 none |
||
microsoft windows server 2000 sp1 |
||
microsoft windows server 2000 sp2 |
||
microsoft windows server 2000 sp3 |
||
microsoft windows server 2003 datacenter sp1 |
||
microsoft windows server 2003 enterprise sp1 |
||
microsoft windows server 2003 standard sp1 |
||
microsoft windows server 2003 web edition sp1 |
||
microsoft windows xp |
||
microsoft windows xp - |