KLA10137 ACE vulnerability in DivX Web Player

Detect date:

04/16/2009

Severity:

Critical

Description:

An integer signing error was found in DivX Web Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DivX file.

Affected products:

DivX Web Player versions 1.4.2.7 and earlier

Solution:

Update to latest version

Impacts:

ACE

Related products:

DivX Web Player

CVE-IDS:

CVE-2008-52599.3Critical