Heap overflow

2008-10-2200:11:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

Low

0.189 Low

EPSS

Percentile

96.3%

JSON

Heap-based buffer overflow in QvodInsert.QvodCtrl.1 ActiveX control (QvodInsert.dll) in QVOD Player before 2.1.5 build 0053 allows remote attackers to execute arbitrary code via a long URL property. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
qvod_playereq2.5.1
qvod_playereq2.0.1
qvod_playereq1.0.1

Name	Operator	Version
qvod_player	eq	2.5.1
qvod_player	eq	2.0.1
qvod_player	eq	1.0.1

References

hi.baidu.com/muma_reader/blog/item/46bd0d7a04eb75e92f73b36e.html

secunia.com/advisories/28494

www.securityfocus.com/bid/27271

exchange.xforce.ibmcloud.com/vulnerabilities/39675