Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Microsoft Windows Media Player setItemInfo Lets Remote Users Execute Arbitrary Code
Categorie: Vulnerability
Posted: 2004-12-22 by ReCall
Views: 589
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: Two vulnerabilities were reported in Microsoft Windows Media Player. A remote user can execute arbitrary scripting code in the Local Computer zone. A remote user can also determine if specified files exist on the target user's system.

Arman Nayyeri reported that a remote user can overwrite the artist, album name, and song name information in a media file on the target user's system. This allows the remote user to inject arbitrary scripting code into the file and then cause Internet Explorer to parse the file, executing the scripting code in the Local Computer zone.

A demonstration exploit is in the following format:

WindowsMediaPlayer.currentMedia.setI temInfo("Artist",'<script>alert("Hello");</'+'script>');

It is also reported that a remote user can invoke the Windows Media Player ActiveX object to determine if files exist on the target user's system. The control can use the getItemInfoByAtom() function with '19' as the parameter to measure the size of the specified file to determine if the specified file exists or not.

Some demonstration exploits are available at:

http://www.4rman.com/security.htm

The vendor was notified on July 5, 2004.

Impact: A remote user can execute arbitrary scripting code in the Local Computer zone on the target user's system.

A remote user can determine if specified files exist on the target user's system.

Solution: The vendor has issued a fixed version (10).
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=1245

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES