CVE-2000-1112

Name of the Vulnerable Software and Affected Versions Microsoft Windows Media Player version 7

Description The issue allows remote attackers to gain privileges via a custom skin (.WMS) file that contains a malicious script. This occurs because Microsoft Windows Media Player 7 executes scripts in these files.

Recommendations For Microsoft Windows Media Player version 7, avoid using custom skin (.WMS) files from untrusted sources until a fix is available. As a temporary workaround, consider disabling the execution of scripts in custom skin files to minimize the risk of exploitation.