AwingSoft Winds3D Player SceneURL Code Execution (CVE-2009-4850)
A code execution vulnerability has been reported in AwingSoft's Winds3D player, a browser plug-in for IE, Firefox and Opera. The vulnerability is due to an error in the way the application handles files with specially crafted parameters. An attacker could exploit this vulnerability by enticing a...