Add or Remove Programs
entry for Security Update for Windows Media Player 10 (KB911565)
. This is a critical security update. Vulnerability in Windows Media Player Could Allow Remote Code Execution. A remote code execution vulnerability exists in Windows Media Player because of the way that it handles processing bitmap files. An attacker could exploit the vulnerability by constructing a malicious bitmap file (.bmp) that could potentially allow remote code execution if a user visited a malicious Web site or viewed a malicious e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system. However, significant user interaction is required to exploit this vulnerability.