Executive Summary

Informations
Name CVE-2006-0025 First vendor Publication 2006-06-13
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 9.3 Attack Range Network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0025

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:1230
 
Oval ID: oval:org.mitre.oval:def:1230
Title: Windows Media Player PNG Vulnerability (v7.1)
Description: Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Family: windows Class: vulnerability
Reference(s): CVE-2006-0025
 Version: 6
Platform(s): Microsoft Windows 2000
 Product(s): Media Player
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1729
 
Oval ID: oval:org.mitre.oval:def:1729
Title: Windows Media Player PNG Vulnerability (v10.0 on WinXP)
Description: Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Family: windows Class: vulnerability
Reference(s): CVE-2006-0025
 Version: 4
Platform(s): Microsoft Windows XP
 Product(s): Media Player
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1805
 
Oval ID: oval:org.mitre.oval:def:1805
Title: Windows Media Player PNG Vulnerability (v10.0, 64-bit)
Description: Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Family: windows Class: vulnerability
Reference(s): CVE-2006-0025
 Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
 Product(s): Media Player
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1807
 
Oval ID: oval:org.mitre.oval:def:1807
Title: Windows Media Player PNG Vulnerability (v8.0)
Description: Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Family: windows Class: vulnerability
Reference(s): CVE-2006-0025
 Version: 4
Platform(s): Microsoft Windows XP
 Product(s): Media Player
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1820
 
Oval ID: oval:org.mitre.oval:def:1820
Title: Windows Media Player PNG Vulnerability (v9.0)
Description: Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Family: windows Class: vulnerability
Reference(s): CVE-2006-0025
 Version: 5
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
 Product(s): Media Player
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1974
 
Oval ID: oval:org.mitre.oval:def:1974
Title: Windows Media Player PNG Vulnerability (v10.0 on S03)
Description: Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Family: windows Class: vulnerability
Reference(s): CVE-2006-0025
 Version: 4
Platform(s): Microsoft Windows Server 2003
 Product(s): Media Player
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 2

SAINT Exploits

Description Link
Windows Media Player PNG buffer overflow More info here

Open Source Vulnerability Database (OSVDB)

Id Description
26430 Microsoft Windows Media Player PNG Processing Overflow

A remote overflow exists in Windows Media Player. The program fails to validate PNG image files resulting in a buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Snort® IPS/IDS

Date Description
2014-01-10 Microsoft Windows Media Player Malformed PNG detected zTXt overflow attempt
RuleID : 6701 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Multiple Products malformed PNG detected tEXt overflow attempt
RuleID : 6700 - Revision : 20 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected iTXt overflow attempt
RuleID : 6699 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected tIME overflow attempt
RuleID : 6698 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected sPLT overflow attempt
RuleID : 6697 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected pHYs overflow attempt
RuleID : 6696 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected tRNS overflow attempt
RuleID : 6695 - Revision : 24 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected hIST overflow attempt
RuleID : 6694 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected bKGD overflow attempt
RuleID : 6693 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected sRGB overflow attempt
RuleID : 6692 - Revision : 24 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected sBIT overflow attempt
RuleID : 6691 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected iCCP overflow attempt
RuleID : 6690 - Revision : 19 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected cHRM overflow attempt
RuleID : 6689 - Revision : 23 - Type : FILE-IMAGE
2014-03-08 Adobe Photoshop malformed PNG detected tRNS overflow attempt
RuleID : 29620 - Revision : 3 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected zTXt overflow attempt
RuleID : 26866 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected iTXt overflow attempt
RuleID : 26864 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected tIME overflow attempt
RuleID : 26863 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected sPLT overflow attempt
RuleID : 26862 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected pHYs overflow attempt
RuleID : 26861 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected tRNS overflow attempt
RuleID : 26860 - Revision : 7 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected hIST overflow attempt
RuleID : 26859 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected bKGD overflow attempt
RuleID : 26858 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected sRGB overflow attempt
RuleID : 26857 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected sBIT overflow attempt
RuleID : 26856 - Revision : 4 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected iCCP overflow attempt
RuleID : 26855 - Revision : 7 - Type : FILE-IMAGE
2014-01-10 Microsoft Windows Media Player Malformed PNG detected cHRM overflow attempt
RuleID : 26854 - Revision : 7 - Type : FILE-IMAGE

Nessus® Vulnerability Scanner

Date Description
2006-06-13 Name : Arbitrary code can be executed on the remote host through the Media Player.
File : smb_nt_ms06-024.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://secunia.com/advisories/20626
http://securitytracker.com/id?1016284
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=406
http://www.kb.cert.org/vuls/id/608020
http://www.osvdb.org/26430
http://www.securityfocus.com/bid/18385
http://www.us-cert.gov/cas/techalerts/TA06-164A.html
http://www.vupen.com/english/advisories/2006/2322
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06...
https://exchange.xforce.ibmcloud.com/vulnerabilities/26788
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
Date Informations
2024-11-28 23:20:16
  • Multiple Updates
2024-11-28 12:08:09
  • Multiple Updates
2021-05-04 12:03:35
  • Multiple Updates
2021-04-22 01:04:04
  • Multiple Updates
2020-12-12 21:23:44
  • Multiple Updates
2020-12-08 21:24:01
  • Multiple Updates
2020-12-05 21:23:46
  • Multiple Updates
2020-05-23 00:17:17
  • Multiple Updates
2018-10-13 00:22:33
  • Multiple Updates
2017-10-11 09:23:37
  • Multiple Updates
2017-07-20 09:23:16
  • Multiple Updates
2016-06-28 15:33:11
  • Multiple Updates
2016-04-26 14:10:49
  • Multiple Updates
2014-03-27 21:20:52
  • Multiple Updates
2014-03-08 21:20:36
  • Multiple Updates
2014-02-17 10:34:13
  • Multiple Updates
2014-01-19 21:23:03
  • Multiple Updates
2013-05-11 10:46:12
  • Multiple Updates