CVE-2006-0005
published 2006-02-14CVE-2006-0005: Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
EXPLOIT
Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src attribute.
Affected
22 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows-nt | — | — |
| microsoft | windows-nt | — | — |
| microsoft | windows-nt | — | — |
| microsoft | windows_2000_advanced_server | — | — |
| microsoft | windows_2000_advanced_server | — | — |
| microsoft | windows_2000_advanced_server | — | — |
| microsoft | windows_2000_advanced_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_server_2000 | — | — |
| microsoft | windows_server_2000 | — | — |
| microsoft | windows_server_2000 | — | — |
| microsoft | windows_server_2000 | — | — |
| microsoft | windows_server_2003 | — | — |
| microsoft | windows_server_2003 | — | — |
| microsoft | windows_server_2003 | — | — |
| microsoft | windows_server_2003 | — | — |
CVSS provenance
nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck9.3CRITICAL