Back to search
CVE-2004-1325
Published: Jan 6, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
The getItemInfoByAtom function in the ActiveX control for Microsoft Windows Media Player 9.0 returns a 0 if the file does not exist and the size of the file if the file exists, which allows remote attackers to determine the existence of files on the local system.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20041218 MS Windows Media Player 9 Vulns (2)
mailing-list
x_refsource_BUGTRAQ
12032
vdb-entry
x_refsource_BID
mediaplayer-activex-information-disclosure(18587)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now