CVE-2002-1847 Information

Description

Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument. NOTE: since the only known attack vector requires command line access this may not be a vulnerability.

Reference

http://online.securityfocus.com/archive/1/285082 http://www.iss.net/security_center/static/9727.php http://www.securityfocus.com/bid/5357