Welcome Guest. | Log In| Register | Membership Benefits

Vulnerability Found In MP3 And Windows Media Files

Flaw can let an attacker take over a user's PC if the user lets mouse hover over an infected file.

By Mitch Wagner, Techweb News
InformationWeek
December 20, 2002 12:00 AM

Security experts are warning of a vulnerability in MP3 and Windows Media files that can be activated simply by a user hovering a mouse over an infected file. The vulnerability could let attackers take over a user's PC.

The flaw in Windows XP can force the operating system to run code when a music file is played by Windows Explorer, the operating system's file-browsing application. Hovering the mouse pointer over a file will open a preview of it and trigger the file's payload, if it has one. The vulnerability doesn't affect Windows Media Player, Microsoft says.

More Software Insights

White Papers

Webcasts

Reports

Videos

A 30-second description by CEO David Fox of Agistix, a vendor founded in 2003 that focuses on logistics and supply chain management software as a service. Agistix, according to Fox, helps customers

Going green often involves the immediate thought of taming the data center, but there's plenty to do in software as well: Everything from using collaboration tools, to process automation, to monitoring your energy footprint. We talked to IBM/Tivoli Software CTO Alan Ganek and InformationWeek's head of analytics, Art Wittmann, about some of the latest trends in going green.

Spiceworks agentless, ad-supported management tool runs right in the browser, targeted at the small to medium sized business.

The popular Nullsoft Winamp free media player is also vulnerable.

Further information and patches to Windows and Winamp are available in several places on the Web: the CERT Coordination Center at Carnegie Mellon University; Foundstone, with advisories for both Windows XP and Winamp; Microsoft; and Nullsoft, which has an update to Winamp.

Subscribe to RSS

» Write To Editor
» Reprint This Article
» Download Top Reports

CAREER CENTER

Ready to take that job and shove it?
Open | Close

Post Your Resume

Employers Area

News & Features

Blogs & Forums

Career Resources

Browse By:
State | City

SPONSOR

RECENT JOB POSTINGS

Featured Jobs:

BP seeking Regional Desktop Coordinator in Houston, TX

Agilent Technologies seeking Marketing Manager in Melbourne, AU

Advancement Project seeking Junior Web Developer in Los Angeles, CA

Johns Hopkins Univ Carey Business School seeking Asst Dean for IS in Baltimore, MD

City of Westland seeking MIS Director in Westland, MI

For more great jobs, career-related news, features and services, please visit our Career Center.

CAREER NEWS

10 Search Engines You Don't Know About

Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Yahoo Profits Fall 23%, Cuts 1,000 Jobs

Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.

Featured Software Resource

Open Source in the Enterprise
Open source software's growing maturity makes it a newly viable option for IT departments looking for ways to save money while solving business challenges. read more