Vulnerability in Win Media Player 9 down
WMPTalk.com Forum Index WMPTalk.com
Discuss Windows Media Player
 
 FAQFAQ   MemberlistMemberlist     RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
 
Google
 
Web wmptalk.com
Vulnerability in Win Media Player 9 down

 
Post new topic   Reply to topic    WMPTalk.com Forum Index -> Windows Media Player
Author Message
christ
Guest
Posted: Wed Dec 22, 2004 5:32 pm    Post subject: Vulnerability in Win Media Player 9 down Reply with quote
Um, okay. Is Microsoft doing something for the rest of us without XP.
- Vulnerabilities in Windows Media Player -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)

Madrid, December 21 2004 - According to SecurityTracker, two vulnerabilities
have been detected in Microsoft Windows Media Player. One of these could
allow an attacker to run arbitrary code.

A remote user could overwrite -on the user's system- the artist, album name,
and song name information in a media file. This would allow the remote user
to inject arbitrary scripting code in the file and then cause Internet
Explorer to parse the file, and execute the scripting code in the Local
Computer zone.

The second vulnerability detected on Microsoft Windows Media Player could
allow a remote user to call the ActiveX Windows Media Player object to
determine whether a certain file exists on the user's system.

These security problems have been resolved on the recently released version
10 of Windows Media Player.

Back to top
 
Post new topic   Reply to topic    WMPTalk.com Forum Index -> Windows Media Player All times are GMT
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



Microsoft Office Forum New Topics
Powered by phpBB