Peaches Posted December 29, 2008 Report Share Posted December 29, 2008 28 December 2008, 10:53Vulnerability in Windows Media Player “According to a report by Security Tracker, all versions of Windows Media Player, including the latest version, 11, have a security related vulnerability. The problem is an integer overflow when playing WAV, SND or MIDI files, which can allow an attacker to execute arbitrary code with the privileges of the user. heise Security found that the test attached to the Security Tracker report, crashed Media Player 9 on Windows XP with Service Pack 2 and Media Player 11 on Windows XP with Service Pack 3. Security Tracker say that the vulnerability can allow code to pass through the hole. If this is true it won't be long before real exploits appear. This was demonstrated with the recent zero day vulnerability of Internet Explorer. The problem was reported by Laurent Gaffie and as yet, no fix has been released.. “ See Also: Windows Media Player Integer Overflow in Playing WAV Files Lets Remote Users Execute Arbitrary Code, Security Tracker report Source: Heise Security - http://www.heise-online.co.uk/security/Vul...r--/news/112315 Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.