Windows Media Player Directory TraversalID: oval:org.mitre.oval:def:321 | Date: (C)2003-11-26 (M)2018-02-19 |
Class: VULNERABILITY | Family: windows |
Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (\\\%5C) that causes an executable to be placed in an arbitrary location.
Platform: |
Microsoft Windows XP |
Product: |
Windows Media Player |