funsec mailing list archives
RE: Security flaw touches Windows Media Player, IE
From: "Richard M. Smith" <rms () computerbytesman com>
Date: Tue, 18 Oct 2005 13:15:43 -0400
I know of a half dozen flaws that allow remote code execution in Internet Explorer Web pages, but I'm too lazy to write them up. Richard -----Original Message----- From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Fergie (Paul Ferguson) Sent: Tuesday, October 18, 2005 11:27 AM To: funsec () linuxbox org Subject: [funsec] Security flaw touches Windows Media Player, IE Via C|net News. [snip] A "critical" flaw that affects both Microsoft's Windows Media Player and Internet Explorer has been uncovered, a security company reported late Monday. The security flaw, which is found in the default installations of Media Player and the IE browser, could let attackers launch a remote execution of code, according to an advisory posted by eEye Digital Security. Systems affected by the flaw include Windows XP with Service Pack 1 and Service Pack 2, Windows NT, and all versions of Windows 2000. Although eEye does not believe the vulnerability is "wormable," the company rated it "critical" because it could allow for a remote execution of code and affects installations of Media Player and IE at their default settings, an eEye representative said. Microsoft could not be immediately reached for comment. [snip] Article: http://news.com.com/Security+flaw+touches+Windows+Media+Player,+IE/2100-1002 _3-5899448.html eEye advisory: http://www.eeye.com/html/research/upcoming/20051017.html - ferg -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg () netzero net or fergdawg () sbcglobal net ferg's tech blog: http://fergdawg.blogspot.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Security flaw touches Windows Media Player, IE Fergie (Paul Ferguson) (Oct 18)
- RE: Security flaw touches Windows Media Player, IE Richard M. Smith (Oct 18)
- RE: Security flaw touches Windows Media Player, IE Aditya Deshmukh (Oct 18)
- RE: Security flaw touches Windows Media Player, IE Richard M. Smith (Oct 19)
- Re: Security flaw touches Windows Media Player, IE Valdis . Kletnieks (Oct 19)
- RE: Security flaw touches Windows Media Player, IE Larry Seltzer (Oct 19)
- RE: Security flaw touches Windows Media Player, IE Richard M. Smith (Oct 19)
- RE: Security flaw touches Windows Media Player, IE Larry Seltzer (Oct 19)
- RE: Security flaw touches Windows Media Player, IE Nick FitzGerald (Oct 20)
- RE: Security flaw touches Windows Media Player, IE Aditya Deshmukh (Oct 18)
- RE: Security flaw touches Windows Media Player, IE Richard M. Smith (Oct 18)