|
 |
|
 |
|
 |
 |
|
|
|
|
|
|
|
|
 |
|
 |
|
 |
|
 |
|
|
 |
|
 |
|
 |  |  |  |
Integer Overflow in Playing WAV Files Lets Remote Users Execute Arbitrary Code
Origin: http://securitytracker.com/id?1021495
Date: Dec 25 2008
Impact: Execution of arbitrary code via network, User access via network
Description: A vulnerability was reported in Windows Media Player. A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can create a specially crafted WAV, SND, or MIDI file that, when loaded by the target user, will trigger an integer overflow and execute arbitrary code on the target system. The code will run with the privileges of the target user.
Laurent Gaffie reported this vulnerability.
Impact on Oxygen media platform: None.
