5.1
CVE-2003-1107
- EPSS 5.18%
- Veröffentlicht 31.12.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The DHTML capability in Microsoft Windows Media Player (WMP) 6.4, 7.0, 7.1, and 9 may run certain URL commands from a security zone that is less trusted than the current zone, which allows attackers to bypass intended access restrictions.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows Media Player Version6.4
Microsoft ≫ Windows Media Player Version7
Microsoft ≫ Windows Media Player Version7.1
Microsoft ≫ Windows Media Player Version9
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.18% | 0.914 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.1 | 4.9 | 6.4 |
AV:N/AC:H/Au:N/C:P/I:P/A:P
|
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B828026
http://www.kb.cert.org/vuls/id/222044
https://exchange.xforce.ibmcloud.com/vulnerabilities/13375