From: "Geo." 

2002-08-22:  Microsoft Windows Media Player File Attachment
  Script Execution Vulnerability

2002-06-27:  Windows Media Player Playlist HTML Script
  Execution Vulnerability

"Rich"  wrote in message news:3e282b73{at}w3.nls.net...
   Seems to you how?  Because you lie about it?

   Do you even read these threads before you make up your lies?

Rich

  "Geo."  wrote in message
news:3e27e493{at}w3.nls.net...
  It seems to me a lot of the exploits wouldn't exist if the media player
  didn't allow scripting. whatever that does for a media player.

  Geo.

  "Rich"  wrote in message news:3e279d79{at}w3.nls.net...
     If you were to look at these you would find that the more recent more
  feature rich players have fewer issues than older players pretty much
  refuting the insinuation that more features == more vulnerabilities.  WMP
  8.0 for Windows XP has two or if you stretch three issues.  Of those two,
  one was common to all players and one was an old feature retained for
  compatility and the vulnerability was not with WMP but an issue of WMP
  exposing something that could be used against something else.

     I suspect if you look at other media players you would likely find the
  same.  Not that Real Player has had a great track record lately but I
  suspect newer versions are better than old ones.

  Rich

    "Randy H"  wrote in message
  news:3e2768da{at}w3.nls.net...
    Some of these look old, but I'm not at all surpised.

      "Geo."  wrote in message
news:3e2762a0{at}w3.nls.net...
      "Randy H"  wrote in message
  news:3e2756fa{at}w3.nls.net...
      > What I'd like to know is how many new vulnerability vectors these
      > new features have added.

          2002-10-18:  Windows Media Player For Solaris Default World
  Writeable Permissions Vulnerability
                  2002-08-22:  Microsoft Windows Media Player File
Attachment
  Script Execution Vulnerability
                  2002-07-30:  Microsoft Windows Media Player Filename
Buffer
  Overflow Vulnerability
                  2002-07-25:  Windows Media Player IE Cache Path Disclosure
  Vulnerability
                  2002-06-27:  Windows Media Player Playlist HTML Script
  Execution Vulnerability
                  2002-06-27:  Windows Media Player WMDM Privilege
Escalation
  Vulnerability
                  2001-11-20:  Windows Media Player Internet Shortcut
  Execution Vulnerability
                  2001-11-20:  Microsoft Windows Media Player .NSC File
Buffer
  Overflow Vulnerability
                  2001-11-20:  Microsoft Windows Media Player .ASF Marker
  Buffer Overflow Vulnerability
                  2001-08-13:  Windows Media Player .ASX 'Version' Buffer
  Overflow Vulnerability
                  2001-05-26:  Microsoft Windows Media Player .ASX Buffer
  Overflow Vulnerability
                  2001-05-02:  Windows Media Player .ASX Buffer Overflow
  Vulnerability
                  2001-02-14:  Microsoft Windows Media Player .WMZ Arbitrary
  Java Applet Vulnerability
                  2001-01-01:  Microsoft Windows Media Player Javascript URL
  Vulnerability
                  2000-11-22:  Microsoft Windows Media Player .WMS Arbitrary
  Script Vulnerability
                  2000-09-26:  Microsoft Windows Media Player 7 Embedded OCX
  Control Vulnerability

--- BBBS/NT v4.01 Flag-4