Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Windows Media Player - ASX Playlist Buffer Overflow - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Windows Media Player - ASX Playlist Buffer Overflow
ISS has published an advisory on a buffer overflow found in Windows Media Player 9 and 10 related to handling .ASX playlist files.  This follows a similar advisory by FrSIRT.  It appears that these advisories are coming in response to indications that there are in-the-wild exploits of the vulnerability.  The issue has been public since back on November 22nd.

Read the ISS Advisory, the FrSIRT Advisory, and the original Bugtraq posting.

(Thanks to everyone who sent this in...)
Tom

160 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!