CVE-2000-1112

Microsoft Windows Media Player 7 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1112. PoCs published by Sandro Gauci.

AI-analyzed exploit summary This exploit leverages a vulnerability in Microsoft Media Player 7 where a malicious .wmz skin file containing embedded JavaScript can execute arbitrary code when loaded via an HTML file or email. The PoC demonstrates file creation on the target system through ActiveXObject manipulation.

Description

Microsoft Windows Media Player 7 executes scripts in custom skin (.WMS) files, which could allow remote attackers to gain privileges via a skin that contains a malicious script, aka the ".WMS Script Execution" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Sandro Gauci · textremotewindows
https://www.exploit-db.com/exploits/20424

This exploit leverages a vulnerability in Microsoft Media Player 7 where a malicious .wmz skin file containing embedded JavaScript can execute arbitrary code when loaded via an HTML file or email. The PoC demonstrates file creation on the target system through ActiveXObject manipulation.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Media Player 7
No auth needed
Prerequisites: Target must have Windows Media Player 7 installed · Target must open a malicious HTML file or email · ActiveX must be enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5575
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1976

Scores

EPSS 0.1397
EPSS Percentile 96.1%

Details

Status published
Products (2)
microsoft/windows_media_player 6.4
microsoft/windows_media_player 7
Published Jan 09, 2001
Tracked Since Feb 18, 2026