Back
CVE-2001-0242
Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of the ".ASX Buffer Overrun" vulnerability as discussed in MS:MS00-090.
Published: Jun 27, 2001
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (3)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_media_player | 6.3 |
| microsoft | windows_media_player | 6.4 |
| microsoft | windows_media_player | 7 |
References (14)
- http://www.kb.cert.org/vuls/id/187528 US Government Resource
- http://www.securityfocus.com/archive/1/181419
- http://www.securityfocus.com/archive/1/183906
- http://www.securityfocus.com/bid/2677 Exploit, Vendor Advisory
- http://www.securityfocus.com/bid/2686
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5574
- http://www.kb.cert.org/vuls/id/187528 US Government Resource
- http://www.securityfocus.com/archive/1/181419
- http://www.securityfocus.com/archive/1/183906
- http://www.securityfocus.com/bid/2677 Exploit, Vendor Advisory
- http://www.securityfocus.com/bid/2686
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5574
Risk Scores
CVSS Score
7.5 / 10
EPSS Score
30.02%
Top 2% most likely to be exploited
Threat Score
39 / 100
Data Sources
NVD
EPSS