CVE-2001-0243
First published: Wed Jun 27 2001(Updated: )
Windows Media Player 7 and earlier stores Internet shortcuts in a user's Temporary Files folder with a fixed filename instead of in the Internet Explorer cache, which causes the HTML in those shortcuts to run in the Local Computer Zone instead of the Internet Zone, which allows remote attackers to read certain files.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Windows Media Player | =6.4 | |
| Windows Media Player | =7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2001-0243?
CVE-2001-0243 is classified as a medium severity vulnerability due to potential remote code execution risks.
How do I fix CVE-2001-0243?
To fix CVE-2001-0243, upgrade to a later version of Windows Media Player that addresses this vulnerability.
What versions of Windows Media Player are affected by CVE-2001-0243?
CVE-2001-0243 affects Windows Media Player versions 6.4 and 7.
What kind of attacks can exploit CVE-2001-0243?
CVE-2001-0243 can be exploited by attackers to execute arbitrary HTML code in the Local Computer Zone.
Is CVE-2001-0243 still a relevant vulnerability?
While CVE-2001-0243 is an older vulnerability, it is still relevant for systems using the affected versions of Windows Media Player.
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/references
- agent/weakness
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/microsoft
- canonical/windows media player
- version/windows media player/6.4
- version/windows media player/7