Windows Media Player (WMP) 7 and 8, as running on Internet Explorer and possibly other Microsoft products that process HTML, allows remote malicious users to bypass zone restrictions and access or execute arbitrary files via an IFRAME tag pointing to an ASF file whose Content-location contains a File:// URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows media player 7 |
||
microsoft windows media player 8 |