CVE-2004-1325

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Media Player version 9.0

Description: The issue allows remote attackers to determine the existence of files on the local system by utilizing the getItemInfoByAtom function in the ActiveX control, which returns a 0 if the file does not exist and the size of the file if the file exists.

Recommendations: For Microsoft Windows Media Player version 9.0, consider disabling the getItemInfoByAtom function as a temporary workaround until a patch is available. Restrict access to the ActiveX control to minimize the risk of exploitation.