CVE

Id
3063  
CVE No.
CVE-2001-0242  
Status
Candidate  
Description
Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of the ".ASX Buffer Overrun" vulnerability as discussed in MS:MS00-090.  
Phase
Modified (20050509)  
Votes
ACCEPT(6) Baker, Cole, Magdych, Wall, Williams, Ziese | MODIFY(1) Frech | NOOP(1) Renaud  
Comments
Frech> XF:mediaplayer-asx-bo(5574)  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
12732 3063 CVE-2001-0242 BUGTRAQ:20010502 Microsoft Media Player ASX Parser buffer overflow vulnerability  View
12733 3063 CVE-2001-0242 URL:http://www.securityfocus.com/archive/1/181419  View
12734 3063 CVE-2001-0242 BUGTRAQ:20010506 Re: Microsoft Media Player ASX Parser buffer overflow vulnerability  View
12735 3063 CVE-2001-0242 URL:http://www.securityfocus.com/archive/1/183906  View
12736 3063 CVE-2001-0242 MS:MS01-029  View
12737 3063 CVE-2001-0242 URL:http://www.microsoft.com/technet/security/bulletin/ms01-029.asp  View
12738 3063 CVE-2001-0242 CERT-VN:VU#187528  View
12739 3063 CVE-2001-0242 URL:http://www.kb.cert.org/vuls/id/187528  View
12740 3063 CVE-2001-0242 BID:2677  View
12741 3063 CVE-2001-0242 URL:http://www.securityfocus.com/bid/2677  View
12742 3063 CVE-2001-0242 BID:2686  View
12743 3063 CVE-2001-0242 URL:http://www.securityfocus.com/bid/2686  View
12744 3063 CVE-2001-0242 XF:mediaplayer-asx-bo(5574)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
64089 JVNDB-2001-000063 Microsoft Windows Media Player の .ASX ファイルにおけるバッファオーバーフローの脆弱性 Microsoft Windows Media Player には、.ASX (Active Stream Redirector) ファイルの処理に不備が存在し、 .ASXファイルの それぞれのタグに、"HREF"という値があり、ファイルを実行する際、この値の文字列長のチェックを適切に行わないため、バッファオーバーフローが発生する脆弱性が存在します。 CVE-2001-0242 3063 7.5 http://jvndb.jvn.jp/ja/contents/2001/JVNDB-2001-000063.html  View