Vulnerability Description
Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of the ".ASX Buffer Overrun" vulnerability as discussed in MS:MS00-090.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Media Player | 6.3 |
References
- http://www.kb.cert.org/vuls/id/187528US Government Resource
- http://www.securityfocus.com/archive/1/181419
- http://www.securityfocus.com/archive/1/183906
- http://www.securityfocus.com/bid/2677ExploitVendor Advisory
- http://www.securityfocus.com/bid/2686
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-02
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5574
- http://www.kb.cert.org/vuls/id/187528US Government Resource
- http://www.securityfocus.com/archive/1/181419
- http://www.securityfocus.com/archive/1/183906
- http://www.securityfocus.com/bid/2677ExploitVendor Advisory
- http://www.securityfocus.com/bid/2686
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-02
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5574
FAQ
What is CVE-2001-0242?
CVE-2001-0242 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of...
How severe is CVE-2001-0242?
CVE-2001-0242 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0242?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Media Player.