Back
CVE-2001-0148
The WMP ActiveX Control in Windows Media Player 7 allows remote attackers to execute commands in Internet Explorer via javascript URLs, a variant of the "Frame Domain Verification" vulnerability.
Published: Jun 2, 2001
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (1)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_media_player | 7 |
References (6)
- http://archives.neohapsis.com/archives/bugtraq/2001-01/0000.html Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6227
- http://archives.neohapsis.com/archives/bugtraq/2001-01/0000.html Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6227
Risk Scores
CVSS Score
7.5 / 10
EPSS Score
26.76%
Top 2% most likely to be exploited
Threat Score
38 / 100
Data Sources
NVD
EPSS