Reported July 26, 2001, by Microsoft.
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 7.0
Microsoft Windows Media player 6.4
An unchecked buffer exists in one of the functions used that processes Microsoft Windows Media Station (.nsc) files. An attacker can use this overflow condition to execute malicious code on the user’s system. This code can then take any action on the system that a legitimate user could take.
Windows Media Player 7.1:
Users can eliminate the vulnerability by installing the patch for version 6.4.
Users can verify that the patch has installed on the machine by confirming that the program has created the following registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Media Player\WMSU5536
Discovered by Microsoft.