CVE-2001-0137

Description

Windows Media Player 7 allows remote attackers to execute malicious Java applets in Internet Explorer clients by enclosing the applet in a skin file named skin.wmz, then referencing that skin in the codebase parameter to an applet tag, aka the Windows Media Player Skins File Download" vulnerability.

Affected Software
References

Software	From	Fixed in
microsoft / windows_media_player	7	7.x

http://marc.info/?l=bugtraq&m=97958100816503&w=2
http://www.securityfocus.com/bid/2203
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-010
https://exchange.xforce.ibmcloud.com/vulnerabilities/5937

Severity: Medium

CVE: CVE-2001-0137
Published: Mar 12, 2001
Updated: Apr 13, 2023
Exploit:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

CVE-2001-0137

Description

Details

CVSS v2