Welcome Guest. | Log In| Register | Membership Benefits
  • Email this page E-mail
  • |  Print Print
  • |   Bookmark and Share
  • icon

Vulnerability Found In MP3 And Windows Media Files


Flaw can let an attacker take over a user's PC if the user lets mouse hover over an infected file.

By Mitch Wagner, Techweb News
InformationWeek
December 20, 2002 12:00 AM

Security experts are warning of a vulnerability in MP3 and Windows Media files that can be activated simply by a user hovering a mouse over an infected file. The vulnerability could let attackers take over a user's PC.

The flaw in Windows XP can force the operating system to run code when a music file is played by Windows Explorer, the operating system's file-browsing application. Hovering the mouse pointer over a file will open a preview of it and trigger the file's payload, if it has one. The vulnerability doesn't affect Windows Media Player, Microsoft says.

The popular Nullsoft Winamp free media player is also vulnerable.

Further information and patches to Windows and Winamp are available in several places on the Web: the CERT Coordination Center at Carnegie Mellon University; Foundstone, with advisories for both Windows XP and Winamp; Microsoft; and Nullsoft, which has an update to Winamp.


Subscribe to RSS


Advertisement

CAREER CENTER
Looking for a new job?



TechCareers

SEARCH
Function:

Keyword(s):

State:
SPONSOR
RECENT JOB POSTINGS
CAREER NEWS
Federal CTO Sees IT Leading U.S. Out Of Recession
Aneesh Chopra is looking to other CIOs to advise him on fleshing out a more detailed agenda to best serve the president's IT agenda.

IT Spending To Fall By 3.8 Percent
IT spending is expected to decline by 3.8 percent in 2009 according to Gartner.

More articles from our career center





Get InformationWeek in Print

Apply for a free 52-week subscription to InformationWeek (a $199 value)



NOTE: Offer valid for U.S., U.S. possessions, & Canada only.