CVE-2006-0006
Description
Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap (.BMP) file that specifies a size of 0 but contains additional data.
Risk Information
Base Score
8.0
MODERATE
Vector
AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
73.9
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Security Update for Windows Media Player 9 (KB911565) | Windows |
| Security Update for Windows Media Player 7.1 for Windows 2000 (KB911565) | Windows |
| Security Update for Windows Media Player 9 (KB911565) | Windows |
| Security Update for Windows Media Player 10 for Windows XP (KB911565) | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234