Unrated severityNVD Advisory· Published Feb 14, 2006· Updated Jun 16, 2026
CVE-2006-0005
CVE-2006-0005
Description
Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src attribute.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
46cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:pro:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:pro:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:pro:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp4:pro:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2000_advanced_server:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:microsoft:windows_2000_advanced_server:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000_advanced_server:sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000_advanced_server:sp2:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000_advanced_server:sp3:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000_advanced_server:sp4:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:standard:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:web_edition:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2000:none:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2000:sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2000:sp2:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2000:sp3:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2003:datacenter_sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2003:enterprise_sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2003:standard_sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2003:web_edition_sp1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows-nt:datacenter_server:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:o:microsoft:windows-nt:datacenter_server:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp3:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp4:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:xp:sp2:home:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:xp_tablet_pc:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:xp_tablet_pc:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows-nt:xp_tablet_pc:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:pro:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:pro:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:pro:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:x64:*:*:*:*:*
- Range: 9, 10
Patches
Vulnerability mechanics
References
10- secunia.com/advisories/18852nvdVendor Advisory
- www.kb.cert.org/vuls/id/692060nvdUS Government Resource
- www.us-cert.gov/cas/techalerts/TA06-045A.htmlnvdUS Government Resource
- securitytracker.com/idnvd
- www.idefense.com/intelligence/vulnerabilities/display.phpnvd
- www.securityfocus.com/bid/16644nvd
- www.vupen.com/english/advisories/2006/0575nvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-006nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24493nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1559nvd
News mentions
0No linked articles in our index yet.