53 matches found
CVE-2004-1325
The CVE-2004-1325 entry concerns the ActiveX control used by Windows Media Player 9.0. The getItemInfoByAtom function returns 0 if a target file does not exist, or the file size if it exists, enabling remote attackers to determine whether files exist on the local system. The description focuses o...
CVE-2001-0242
CVE-2001-0242 describes a buffer overflow in the Active Stream Redirector (.ASX) parsing of Windows Media Player (notably versions 6.4 and 7). The CERT/VU content attributes the issue to the .ASX file handler, which can be triggered by viewing a malicious web page, potentially allowing remote cod...
CVE-2007-6236
The vulnerability CVE-2007-6236 affects Microsoft Windows Media Player. Description: WMP can be remotely triggered by processing a specially crafted AIFF file (kr.aiff) to cause an application crash via a divide-by-zero error. Impact is a remote denial of service on affected WMP instances. No spe...