CVE Vulnerabilities

CVE-2003-0604

Published: Aug 27, 2003 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Windows Media Player (WMP) 7 and 8, as running on Internet Explorer and possibly other Microsoft products that process HTML, allows remote attackers to bypass zone restrictions and access or execute arbitrary files via an IFRAME tag pointing to an ASF file whose Content-location contains a File:// URL.

Affected Software

Name Vendor Start Version End Version
Windows_media_player Microsoft 7 (including) 7 (including)
Windows_media_player Microsoft 8 (including) 8 (including)

References