The DHTML capability in Microsoft Windows Media Player (WMP) 6.4, 7.0, 7.1, and 9 may run certain URL commands from a security zone that is less trusted than the current zone, which allows attackers to bypass intended access restrictions.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 01:56
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2003-12-31 05:00
Updated : 2023-12-10 10:17
NVD link : CVE-2003-1107
Mitre link : CVE-2003-1107
CVE.ORG link : CVE-2003-1107
JSON object : View
Products Affected
microsoft
- windows_media_player
CWE