CVE-2003-0228 - OpenCVE

Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Microsoft	Windows Media Player

Configuration 1 [-]

OR	cpe:2.3:a:microsoft:windows_media_player:-:::::::*
	cpe:2.3:a:microsoft:windows_media_player:7.1:::::::*

References

Link	Resource
http://marc.info/?l=bugtraq&m=105232913516488&w=2
http://marc.info/?l=bugtraq&m=105240528419389&w=2
http://marc.info/?l=ntbugtraq&m=105233960728901&w=2
http://www.kb.cert.org/vuls/id/384932	US Government Resource
http://www.securityfocus.com/bid/7517	Exploit Patch Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-017
https://exchange.xforce.ibmcloud.com/vulnerabilities/11953
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A321

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2003-05-08T04:00:00

Updated: 2018-10-12T19:57:01

Reserved: 2003-04-30T00:00:00

Link: CVE-2003-0228

JSON object: View

NVD Information

Status : Modified

Published: 2003-05-27T04:00:00.000

Modified: 2018-10-30T16:25:13.340

Link: CVE-2003-0228

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-05-07T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-12T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20030507 Windows Media Player directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105232913516488&w=2"}, {"name": "7517", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/7517"}, {"name": "20030507 Windows Media Player directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=105233960728901&w=2"}, {"name": "mediaplayer-skin-code-execution(11953)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11953"}, {"name": "oval:org.mitre.oval:def:321", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A321"}, {"name": "VU#384932", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/384932"}, {"name": "20030508 why i love xs4all + mediaplayer thingie", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105240528419389&w=2"}, {"name": "MS03-017", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-017"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0228", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20030507 Windows Media Player directory traversal vulnerability", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105232913516488&w=2"}, {"name": "7517", "refsource": "BID", "url": "http://www.securityfocus.com/bid/7517"}, {"name": "20030507 Windows Media Player directory traversal vulnerability", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=105233960728901&w=2"}, {"name": "mediaplayer-skin-code-execution(11953)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11953"}, {"name": "oval:org.mitre.oval:def:321", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A321"}, {"name": "VU#384932", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/384932"}, {"name": "20030508 why i love xs4all + mediaplayer thingie", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105240528419389&w=2"}, {"name": "MS03-017", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-017"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0228", "datePublished": "2003-05-08T04:00:00", "dateReserved": "2003-04-30T00:00:00", "dateUpdated": "2018-10-12T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:windows_media_player:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CDD85BA-0CDA-4EF2-A447-84A4F7B94B3A", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:windows_media_player:7.1:*:*:*:*:*:*:*", "matchCriteriaId": "C66EBE04-CE6A-4B81-BC09-60DC5DB121E3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location."}, {"lang": "es", "value": "Vulnerabilidad de cruce de directorios en Microsoft Media Player 7.1 y Windows Media Player para Windows XP permite que atacantes remotos ejecuten c\u00f3digo arbitrario mediante un fichero de \"skins\" con una URL que contenga el caracter ``codificado en hexadecimal (%5C), lo cual permite que un ejecutable sea colado en una localizaci\u00f3 arbitraria."}], "id": "CVE-2003-0228", "lastModified": "2018-10-30T16:25:13.340", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-05-27T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105232913516488&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105240528419389&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=105233960728901&w=2"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/384932"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/7517"}, {"source": "cve@mitre.org", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-017"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11953"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A321"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}