MS patches Media Player secure music vulnerability

Share on facebook
Share on twitter
Share on linkedin
Share on whatsapp
MS patches Media Player secure music vulnerability

Microsoft has issued a cumulative patch for Windows Media Player designed to patch three vulnerabilities, the most serious of which might permit an attacker to run arbitrary code on a victim’s PC.
An advisory by Microsoft says that the most serious of the three problems is an information disclosure vulnerability, which it rates as severe. The vulnerability results because of a flaw in how Windows Media Player handles certain types of licenses for secure media files when the media file is stored in the IE cache. Specifically, when a type of secure Windows Media file is opened, the media player erroneously returns information to the server that discloses the location of the IE cache.

More at The Register Security Channel