Back
CVE-2001-0137
Windows Media Player 7 allows remote attackers to execute malicious Java applets in Internet Explorer clients by enclosing the applet in a skin file named skin.wmz, then referencing that skin in the codebase parameter to an applet tag, aka the Windows Media Player Skins File Download" vulnerability.
Published: Mar 12, 2001
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (1)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_media_player | 7 |
GitHub Security Advisory GHSA-67pp-g8pj-rw94
Windows Media Player 7 allows remote attackers to execute malicious Java applets in Internet...
References (8)
- http://marc.info/?l=bugtraq&m=97958100816503&w=2
- http://www.securityfocus.com/bid/2203 Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-010
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5937
- http://marc.info/?l=bugtraq&m=97958100816503&w=2
- http://www.securityfocus.com/bid/2203 Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-010
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5937
Risk Scores
CVSS Score
5.1 / 10
EPSS Score
7.39%
Top 8% most likely to be exploited
Threat Score
22.6 / 100
Data Sources
NVD
EPSS
GitHub