[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Windows Media Player BMP Heap Overflow

To: bugtraq-jp@xxxxxxxxxxxxxxxxx
Subject: Windows Media Player BMP Heap Overflow
From: Akiko Takahashi <takahashi.akiko@xxxxxxxxx>
Date: Wed, 15 Feb 2006 16:42:38 +0900

Windows Media Player BMP ヒープオーバフロー脆弱性 (MS06-005/CVE-2006-0006)

eEye Digital Securityは、Windows Media Playerの致命的な脆弱性を発見しま
した。本脆弱性を利用することで、攻撃者はリモートから安定的にヒープメモリ
を上書きし、任意のコードをプレーヤの実行ユーザ権限にて実行可能です。

詳細はこちら:
http://www.scs.co.jp/eeye/advisories/AD20060214.html


関連情報:
eEyeフリーツールダウンロード
 - https://sec.sse.co.jp/eeye/freedl.html
eEye Advisories (日本語版)
 - http://www.scs.co.jp/eeye/advisories.html

本Advisoryは、住商情報システム株式会社（SCS）が、eEye Digital Securityの
許可を得た上で翻訳しております。
SCSは本和訳が正確な情報になるよう努めさせて頂きます。しかしながら、正確
性、完全性、信頼性、安全性等に関して、いかなる責任も負わないことと致しま
す。

Copyright (c) 1998-2006 eEye Digital Security
Permission is hereby granted for the redistribution of this alert
electronically. It is not to be edited in any way without express
consent of eEye. If you wish to reprint the whole or any part of this
alert in any other medium excluding electronic medium, please email
alert@xxxxxxxx for permission.

Disclaimer
The information within this paper may change without notice. Use of this
information constitutes acceptance for use in an AS IS condition. There
are no warranties, implied or express, with regard to this information.
In no event shall the author be liable for any direct or indirect
damages whatsoever arising out of or in connection with the use or
spread of this information. Any use of this information is at the user's
own risk.

Prev by Date: SecurityFocus Newsletter #321 2005-10-17->2005-10-21
Next by Date: SecurityFocus Newsletter #323 2005-10-31->2005-11-04
Previous by thread: SecurityFocus Newsletter #321 2005-10-17->2005-10-21
Next by thread: SecurityFocus Newsletter #323 2005-10-31->2005-11-04
Index(es):
- Date
- Thread