49 matches found
EUVD-2016-8727
Malware in sbrugna...
CVE-2018-9474
In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2024-10709 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version affected versions not specified Description: The issue is related to a possible serialization/deserialization mismatch in the writeToParcel method of MediaPlayer.java due to improper input validatio...
Malicious Package
Overview vpro-mediaplayer is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
Malicious code in vpro-mediaplayer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ed2e12118ca2a2e35f3af42a283f6d9bf5384da13060dabd5ab90e220e94544 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-944 Malicious code in vpro-mediaplayer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ed2e12118ca2a2e35f3af42a283f6d9bf5384da13060dabd5ab90e220e94544 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
SUSE CVE-2016-7878
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution...
MAL-2022-6971 Malicious code in vrt-mediaplayer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5beb7bbe760c6fff446c9c3f4389622040e0e1070219e4d6d7f1a4131ef936df Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in vrt-mediaplayer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5beb7bbe760c6fff446c9c3f4389622040e0e1070219e4d6d7f1a4131ef936df Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2021-0484
In readVector of IMediaPlayer.cpp, there is a possible read of uninitialized heap data due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...
Adobe Flash Player MediaPlayer Out-Of-Bounds Access Remote Code Execution Exploit
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
typhoonondoy.org XSS vulnerability
Open Bug Bounty ID: OBB-559594 Description| Value ---|--- Affected Website:| typhoonondoy.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ctsfw.edu XSS vulnerability
Vulnerable URL: http://www.ctsfw.edu/PublicFiles/mediaplayer/player.swf?tracecall=prompt%27openbugbounty%27 Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 15.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
bcbstx.com XSS vulnerability
Vulnerable URL: https://www.bcbstx.com/howsyourheart/flash/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|--- Patched:| No Latest check...
video.menzies.edu.au XSS vulnerability
Open Bug Bounty ID: OBB-266177 Description| Value ---|--- Affected Website:| video.menzies.edu.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
doms.csu.edu.au XSS vulnerability
Vulnerable URL: https://doms.csu.edu.au/csu/file/78a6c5d7-fd8b-ff7e-fff3-2ffb78764ebe/1/resources/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description|...
downloads.sms.cam.ac.uk XSS vulnerability
Vulnerable URL: https://downloads.sms.cam.ac.uk/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|--- Patched:| No Latest check for patch:|...
ucl.ac.uk XSS vulnerability
Vulnerable URL: http://www.ucl.ac.uk/mediaplayer/jwflvplayer/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|--- Patched:| No Latest chec...
www1.nyc.gov XSS vulnerability
Vulnerable URL: https://www1.nyc.gov/assets/doh/media/nyc-teen/video/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|--- Patched:| No...
student.wiki.pisd.edu XSS vulnerability
Vulnerable URL: http://student.wiki.pisd.edu/s/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|--- Patched:| No Latest check for patch:|...