Vulnerability Details CVE-2001-0148
The WMP ActiveX Control in Windows Media Player 7 allows remote attackers to execute commands in Internet Explorer via javascript URLs, a variant of the "Frame Domain Verification" vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.137
EPSS Ranking 93.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2001-01/0000.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6227
- http://archives.neohapsis.com/archives/bugtraq/2001-01/0000.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6227
Products affected by CVE-2001-0148
-
cpe:2.3:a:microsoft:windows_media_player:7