| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
Microsoft Security Bulletin (MS01-010): Microsoft Windows Media Player 7 Security Patch: Skins File Download Vulnerability | |
|
||
| Time: 11:44 EST/16:44 GMT | News Source: ActiveWin.com | Posted By: Robert Stein | ||
|
Windows Media Player 7 introduced a feature called "skins", that allows customization of the look and feel of Windows Media Player. If a Windows Media Player skin (.WMZ) file were downloaded from a malicious web site it could potentially be used to run Java code to read and browse files on a local machine. The vulnerability stems from the fact that "skins" are downloaded to a known location on a victim's computer and are stored in a .zip package. If the .zip package contained a Java class (.class) file, any Java code in this class could be executed under the local computer security zone. If a Windows Media Player skin (.WMZ) file were downloaded from a malicious web site, it could potentially cause the deployment of zipped Java code to a known location on the visiting user’s machine. Since the Java code would reside in a known location on the machine, script hosted on a hostile web site or embedded in a hostile HTML mail message could potentially invoke the script in the local computer security zone to take arbitrary action on the user’s machine.
| ||
|
Write Comment
Return to News |
Displaying 826 through 827 of 827 Prev | First |
The time now is
4:55:14 AM
ET.
Any comment problems? E-mail us |
| #826 By 4240821 (178.173.249.36) at 3/20/2026 12:38:36 AM |
|
https://telegra.ph/Carlos-Lozanos-Billion-Dollar-Startup-Faces-ScandalInvestors-Panic-02-07
https://telegra.ph/Irene-Wüst-Launches-MiniUniverse-Scientists-Shocked-by-RealityWarping-Insights-02-07 https://telegra.ph/Chinese-Taipei-Secures-Historic-Olympic-Record-Shining-on-Global-Stage-02-07 https://telegra.ph/Jacob-Elordi-Steals-the-Spotlight-with-Groundbreaking-New-Film-02-07 https://telegra.ph/Pistons--Knicks-Insane-100Pace-Thriller-Sends-Fans-Into-Frenzy-02-07 https://telegra.ph/Gustav-Thöni-Breaks-Records-With-Record-Breaking-Ski-Sprint-Fans-in-Awe-02-07 https://telegra.ph/Irene-Wust-Breaks-Records-in-International-Swimming-Championship-02-07 https://telegra.ph/Ryan-Fox-Breaks-Record-Sets-New-World-Standard-02-07 https://telegra.ph/Google-Launches-Quantum-Search-Engine-Transforming-Internet-Browsing-Forever-02-07 https://telegra.ph/Italiens-Præsident-Resigns-Just-Before-Election-Sparks-Nationwide-Debate-02-07 |
|
Write Comment
Return to News |
Displaying 826 through 827 of 827 Prev | First |
The time now is
4:55:14 AM
ET.
Any comment problems? E-mail us |
