Vulnerabilities > CVE-2006-6601 - Resource Management Errors vulnerability in multiple products

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

windows

microsoft

CWE-399

exploit available

NVD

Published: 2006-12-15

Updated: 2018-10-17

Summary

Windows Media Player 10.00.00.4036 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a .MID (MIDI) file with a malformed header chunk without any track chunks, possibly involving (1) number of tracks of (2) time division fields that are set to 0.

Vulnerable Configurations

Part	Description	Count
Application	Windows Windows Media Player 10.00.00.4036	1
OS	Microsoft Microsoft Windows XP *	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Exploit-Db

description	Microsoft Windows Media 6.4/10.0 MID Malformed Header Chunk DoS. CVE-2006-6601. Dos exploit for windows platform
id	EDB-ID:29285
last seen	2016-02-03
modified	2006-12-15
published	2006-12-15
reporter	shinnai
source	https://www.exploit-db.com/download/29285/
title	Microsoft Windows Media 6.4/10.0 - MID Malformed Header Chunk DoS

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References