CVE-2007-3035

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Media Player versions 7.1 through 11

Description: The issue allows remote attackers to execute arbitrary code via a skin file with crafted header information that is not properly handled during decompression. This can be achieved through WMZ or WMD skin files.

Recommendations: For Microsoft Windows Media Player versions 7.1 through 11, consider disabling the handling of skin files until a patch is available. Restrict access to the decompression functionality of skin files to minimize the risk of exploitation. Avoid using crafted WMZ or WMD files in Windows Media Player until the issue is resolved.