Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1324


Vulnerability Score 2.6 2.6
CVE Id CVE-2004-1324
Last Modified 05 Sep 2008 04:41:00
Published 18 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE



The Microsoft Windows Media Player 9.0 ActiveX control may allow remote attackers to execute arbitrary web script in the Local computer zone via the (1) artist or (2) song fields of a music file, if the file is processed using Internet Explorer.

Vulnerable Systems


  • Microsoft Windows Media Player 9


XF - mediaplayer-mp3-code-execution(18576)

BID - 12031

BUGTRAQ - 20041218 MS Windows Media Player 9 Vulns (2)

Last Updated: 27 May 2016 10:38:59