Windows Media Player critically vulnerable

Stan Beer
Thursday, 16 February 2006 09:35

Business IT - Security

Security vendor Symantec has identified new vulnerabilities in Microsoft Windows which it describes as critical, including a potentially dangerous one on Windows Media Player.

According to Symantec, a vulnerability in various versions of Windows Media Player has the potential for remote code execution by processing malicious bitmap images embedded in Windows Media Player skins.  Even though this vulnerability is within the media player program, it could be exploited through Microsoft Internet Explorer because users often get media that is hosted on the Web.  When content is accessed this way, Microsoft Internet Explorer typically starts the media player automatically to open the media file which could allow attackers to host the malicious skin file on a Web page as method of attack.

While a direct Web-based attack scenario is not present for Windows Media Player 7.1 on Windows 2000 or Windows Media Player 8 on Windows XP SP1, exploitation could still occur if the skin file is manually downloaded and installed.

This vulnerability affects Windows Media Player 7.1 on Windows 98/98SE/ME/2000, Windows Media Player 8 on Windows XP (up to and including SP1), Windows Media Player 9 on Windows 2000/XP SP2/Server 2003, Windows Media Player 10 on 98/98SE/ME/XP (up to and including SP2). Which pretty much includes the lot!

“Application vulnerabilities, such as the issue in Windows Media Player, are a growing cause of concern” said Oliver Friedrichs, senior manager, Symantec Security Response. "It is important that Internet users be cautious, regularly update vulnerable applications, and run up-to-date Internet security software."