CVE-2004-0726

The Windows Media Player control in Microsoft Windows 2000 allows remote attackers to execute arbitrary script in the local computer zone via an ASX filename that contains javascript, which is executed in the local context in a preview panel.

Published: Jul 27, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-0726
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_2000	-	-

http://marc.info/?l=bugtraq&m=108965512912175&w=2
http://www.securityfocus.com/bid/10693
https://exchange.xforce.ibmcloud.com/vulnerabilities/16704

Vulnerability Database

289,599

CVE-2004-0726