MediaPlayerがクラッシュするそうです

A vulnerability was reported on Windows Media Player claiming that using a specially crafted WAV, SND, or MIDI file can trigger an integer overflow and execute arbitrary code on the system.

One of our reader has tested the POC on a fully patched windows XP SP3 with both Media Player 9 and 11 and has shown to crash the application.

Some basic crash results with the latest Media Player 11 provided by our reader:

AppName: wmplayer.exe AppVer: 11.0.5721.5145 ModName: quartz.dll
ModVer: 6.5.2600.5596 Offset: 000f2121

InfoSec Handlers Diary Blog - Windows Media Player Integer Overflow