Arbitrary Web Script Execution in Microsoft Windows Media Player 9.0 ActiveX Control

Arbitrary Web Script Execution in Microsoft Windows Media Player 9.0 ActiveX Control

CVE-2004-1324 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

The Microsoft Windows Media Player 9.0 ActiveX control may allow remote attackers to execute arbitrary web script in the Local computer zone via the (1) artist or (2) song fields of a music file, if the file is processed using Internet Explorer.

Learn more about our Web App Pen Testing.