CVE-2003-1107 Information

Description

The DHTML capability in Microsoft Windows Media Player (WMP) 6.4 7.0 7.1 and 9 may run certain URL commands from a security zone that is less trusted than the current zone which allows attackers to bypass intended access restrictions.

Reference

http://support.microsoft.com/default.aspx?scid=kb;en-us;828026 http://www.kb.cert.org/vuls/id/222044 https://exchange.xforce.ibmcloud.com/vulnerabilities/13375