<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos network security services platform

Bugtraq: Windows Media files allow opening any url in Internet Explorer

Windows Media files allow opening any url in Internet Explorer

From: Berend-Jan Wever <skylined_at_edup.tudelft.nl>
Date: Sat, 1 Jan 2005 19:40:21 +0100 (CET)

PC World has published an interesting article:
http://www.pcworld.com/news/article/0,aid,119016,00.asp

Short version:
The Digital Rights Management for Windows Media files allows opening
arbitrary urls in Internet Explorer.

Impact:
MSIE browser vulnerabilities can now be exploited through wma files,
allowing virii, worms and other kinds of malware to spread through P2P
networks.

Happy new year!

Cheers,
SkyLined
Received on Jan 01 2005

This message: [ Message body ]
Next message: Berend-Jan Wever: "Windows LoadImage API Heapoverflow exploit"
Previous message: Hack Hawk: "Jacks FormMail.php remote file access vulnerability"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]