Vulnerability Name: | CVE-2004-0726 (CCN-16704) | ||||||||
Assigned: | 2004-07-11 | ||||||||
Published: | 2004-07-11 | ||||||||
Updated: | 2019-04-30 | ||||||||
Summary: | The Windows Media Player control in Microsoft Windows 2000 allows remote attackers to execute arbitrary script in the local computer zone via an ASX filename that contains javascript, which is executed in the local context in a preview panel. | ||||||||
CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||
Vulnerability Type: | CWE-Other | ||||||||
Vulnerability Consequences: | Gain Access | ||||||||
References: | Source: CCN Type: BugTraq Mailing List, Sun Jul 11 2004 - 10:55:00 CDT Media Preview Script Execution Vulnerability Source: MITRE Type: CNA CVE-2004-0726 Source: BUGTRAQ Type: UNKNOWN 20040711 Media Preview Script Execution Vulnerability Source: CCN Type: OSVDB ID: 7777 Microsoft Windows Media Control Preview Script Execution Source: BID Type: Exploit, Vendor Advisory 10693 Source: CCN Type: BID-10693 Microsoft Windows 2000 Media Player Control Media Preview Script Execution Vulnerability Source: XF Type: UNKNOWN win2k-media-code-execution(16704) Source: XF Type: UNKNOWN win2k-media-code-execution(16704) | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: ![]() | ||||||||
BACK |