CVE-2004-1325

CVE Database · CVE-2004-1325

CVE-2004-1325

· N/AModified

CVSS v3.1

N/A

EPSS

15.72%

Published

Dec 18, 2004

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBMicrosoft Windows Media Player 9.0 - ActiveX Control File Enumeration

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The getItemInfoByAtom function in the ActiveX control for Microsoft Windows Media Player 9.0 returns a 0 if the file does not exist and the size of the file if the file exists, which allows remote attackers to determine the existence of files on the local system.

Affected Products (1)

microsoft · windows_media_playervulnerable

References (6)

http://marc.info/?l=bugtraq&m=110352518211306&w=2

http://www.securityfocus.com/bid/12032

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18587

http://marc.info/?l=bugtraq&m=110352518211306&w=2

http://www.securityfocus.com/bid/12032

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18587

KEV Catalog EPSS Scores Vendors All CVEs