CVE Vulnerabilities

CVE-2003-0228

Published: May 27, 2003 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location.

Affected Software

Name Vendor Start Version End Version
Windows_media_player Microsoft - (including) - (including)
Windows_media_player Microsoft 7.1 (including) 7.1 (including)

References