Home › News › Industry News

Flaw in Windows Media Player Skins

On May 8, 2003, 12:08 PM

A flaw exists in the way Windows Media Player 7.1 & Windows Media Player for Windows XP handle the download of skin files. The flaw means that an attacker could force a file masquerading as a skin file into a known location on a user’s machine. This could allow an attacker to place a malicious executable on the system.

In order to exploit this flaw, an attacker would have to host a malicious web site that contained a web page designed to exploit this particular vulnerability & then persuade a user to visit that site – an attacker would have no way to force a user to the site. An attacker could also embed the link in an HTML e-mail & send it to the user.

Affected Software:
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player for Windows XP (Version 8.0)

Patch availability:
Microsoft Windows Media Player 7.1
Microsoft Windows Media Player for Windows XP (Version 8.0)

No tags on this story

Next Article: Bethesda Softworks to Publish Call of Cthulhu

TechSpot on:

Most Popular

Trending

Featured

Featured on Laptops

Downloads and Drivers

Downloads

Drivers

WinMPG Video Convert 9.3.5

TurboFTP 6.30.940

Wise Youtube Downloader 1.23

System Cleaner 7.3.2.280

aTube Catcher 3.8.1390

More Downloads

Latest Discussion

HDD vs USB vs SSD boot 6 replies on Storage and Networking

How to remove write protection of USB mass storage with no visible lock/unlock 12 replies on Storage and Networking

Moar Free Dota2 6 replies on Gaming

Graphics Card Question 5 replies on Audio and Video

Unsure if my new graphics card will work with my PC 7 replies on Audio and Video

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.

TechSpot

Welcome to TechSpot

Home › News › Industry News

Flaw in Windows Media Player Skins

Next Article: Bethesda Softworks to Publish Call of Cthulhu

Post a new comment

TechSpot on:

Most Popular

Building a Thin Mini-ITX PC: Small and Silent Performance

'Supercapacitor' could fully charge your phone in less than 30 seconds

Metro: Last Light Tested, Benchmarked

Microsoft launches YouTube app, Google demands it taken down

Bill Gates is once again the richest person in the world

Metro: Last Light Performance, Benchmarked

Building a Thin Mini-ITX PC: Small and Silent Performance

Metro: Last Light Review

Gigabyte U2442F Ultrabook Review

8 Free to Play Games That Are Too Good to Be True

Featured on Laptops

77 Lenovo ThinkPad X1 Carbon Touch

79 Lenovo IdeaPad Yoga 13

75 Asus VivoBook S400CA

89 Apple MacBook Pro 15" Retina - Summer 2012

85 Apple MacBook Air 13.3 inch - Summer 2012

Downloads and Drivers

Latest Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Social Login & Guest Posting Post as anonymous user			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.