The other day I mentioned Microsoft’s new Security Advisory service. The first update in the series has been released, and (surprise!) Microsoft Security Advisory (892313) covers the issue of Windows Media files that can serve as vehicles for delivering unwanted software:
In March 2005, Microsoft issued an update to Windows Media Player to address the issue discussed in this advisory. Microsoft was made aware that malicious attackers can potentially create media files that could then trigger the launch of a Web site without further user interaction. This Web site could potentially then try and trick the user into downloading and executing malicious software add-ons, such as spyware. This social engineering attack abuses a by-design feature in Microsoft Windows Media Player Digital Rights Management (DRM) technology that requires users to have a license to playback a media file.
It’s an excellent summary of an issue I’ve been writing about since the beginning of the year, and I hope it’s a sign of a new awareness about this sort of security issue.
(And a tip of the hat to Eric L. Howes, Ben Edelman, Andrew Clover, Suzi at Spyware Warrior, and Ryan Naraine at eWeek for their input on this issue.)
Ed Bott 