Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Sign up or Login to participate.
Collaborate in the cloud with Office, Exchange, SharePoint, and Lync
|
|||||||
Collaborate in the cloud with Office, Exchange, SharePoint, and Lync
Flaw in Windows Media Player Skins
|
|
Thread Tools | Search this Thread |
|
#1
05-08-2003
|
||||
|
||||
|
Flaw in Windows Media Player Skins
A flaw exists in the way Windows Media Player 7.1 & Windows Media Player for Windows XP handle the download of skin files. The flaw means that an attacker could force a file masquerading as a skin file into a known location on a user’s machine. This could allow an attacker to place a malicious executable on the system.
In order to exploit this flaw, an attacker would have to host a malicious web site that contained a web page designed to exploit this particular vulnerability & then persuade a user to visit that site – an attacker would have no way to force a user to the site. An attacker could also embed the link in an HTML e-mail & send it to the user. Affected Software: Microsoft Windows Media Player 7.1 Microsoft Windows Media Player for Windows XP (Version 8.0) Patch availability: Microsoft Windows Media Player 7.1 Microsoft Windows Media Player for Windows XP (Version 8.0) |
|
 |
| Similar Topics | ||||
| Topic | Replies | Forum | ||
 How do I stop Windows Media Player detecting my mp3 player
|
3 | Software Apps | ||
|
Need a stable plugin or codec for Windows Media Player 10 for Real Player web content
|
2 | Software Apps | ||
|
Windows Media Player - Not starting and cannot create Directshow player
|
5 | Windows OS | ||
|
Windows Media Player 11
|
6 | Windows OS | ||
|
Flaw in ISAPI Extension for Windows Media Services
|
0 | General Discussion | ||
| Thread Tools | Search this Thread |
|
|
All times are GMT -4. The time now is 02:32 AM.