|
Microsoft Says Purportedly Critical WMP Vulnerability "No Security Risk"
|
Posted by Donster on: 2008-12-30 15:50:29 337
|
By Jason Mick @ DailyTech
Last week on December 24, security researcher Laurent Gaffi reported what he called a critical security flaw in Microsoft's Windows Media Player to the Bugtraq security mailing list, marking the second major Windows vulnerability found in recent weeks. He said the flaw, which affects Versions 9, 10, and 11 could allow malicious users to malformed .wav, .snd, or .mid audio files to compromise a PC running Windows XP or Windows Vista.
Mr. Gaffi included code for a proof-of-concept attack, which would execute code remotely on the victim's PC.
The claims evoked a quick and emphatic response from Microsoft. Microsoft claims that there is no "critical vulnerability" at all, and that the bug the research found could not be exploited. Microsoft stated that the problem is a "reliability issue with no security risk to customers."
Read more...
|
|
News Source: Email
|
|
