CVE-2003-0228

Microsoft Windows Media Player <7.1, XP - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0228. PoCs published by Jelmer Kuperus.

AI-analyzed exploit summary This exploit leverages a path traversal vulnerability in Windows Media Player 8 to drop a malicious executable in the startup folder. It uses URL-encoded paths to bypass validation and deliver a payload disguised as a skin file.

Description

Directory traversal vulnerability in Microsoft Windows Media Player 7.1 and Windows Media Player for Windows XP allows remote attackers to execute arbitrary code via a skins file with a URL containing hex-encoded backslash characters (%5C) that causes an executable to be placed in an arbitrary location.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jelmer Kuperus · javaremotewindows

https://www.exploit-db.com/exploits/22570

View Code ZIP pw:eip

This exploit leverages a path traversal vulnerability in Windows Media Player 8 to drop a malicious executable in the startup folder. It uses URL-encoded paths to bypass validation and deliver a payload disguised as a skin file.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Windows Media Player 8 on Windows XP (English and Dutch versions)

No auth needed

Prerequisites: Victim must download and execute the malicious skin file · Attacker must host the exploit on a web server

MITRE ATT&CK