25 matches found
EUVD-2007-1291
Malware in sbrugna...
EUVD-2008-5236
Malware in sbrugna...
CVE-2014-10024
Multiple integer signedness errors in DirectShowDemuxFilter, as used in Divx Web Player, Divx Player, and other Divx plugins, allow remote attackers to execute arbitrary code via a 1 negative or 2 large value in a Stream Format STRF chunk in an AVI file, which triggers a heap-based buffer overflo...
CVE-2014-10024
CVE-2014-10024 involves multiple integer signedness errors in DirectShowDemuxFilter, used by Divx Web Player, Divx Player, and other Divx plugins. The flaw arises when parsing the Stream Format (STRF) chunk in an AVI file, where a negative or excessively large value can trigger a heap-based buffe...
DivX Web Player Version Detection
This script detects the version of DivX Web Player and sets the result in KB. OpenVAS Vulnerability Test $Id: secpoddivxwebplayerdetect.nasl 7140 2017-09-15 09:41:22Z cfischer $ DivX Web Player Version Detection Authors: Nikita MR Copyright: Copyright c 2009 SecPod, http://www.secpod.com This...
DivX Web Player Buffer Overflow Vulnerability
This host is running DivX Web Player which is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpoddivxwebplayerbofvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ DivX Web Player Buffer Overflow Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 SecPod,...
DivX Web Player Version Detection
This script detects the version of DivX Web Player. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
DivX Web Player Buffer Overflow Vulnerability
DivX Web Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DivX Web Player 'STRF'块处理远程缓冲区溢出漏洞
BUGTRAQ ID: 34523 CVE ID:CVE-2008-5259 CNCVE ID:CNCVE-20085259 DivX Web Player用于在线播放DivX视频的应用程序。 DivX Web Player处理"STRF" Stream Format块存在错误,远程攻击者可以利用漏洞以应用程序安全上下文执行任意指令。 通过提交特殊构建的DivX文件,诱使用户访问,可导致处理"STRF" Stream Format块时存在符号错误而触发基于堆的缓冲区溢出,可能以应用程序权限执行任意指令。 DivX Inc. DivX Web Player 1.4.2 升级到DivX We...
Secunia Research: DivX Web Player Stream Format Chunk Buffer Overflow
====================================================================== Secunia Research 15/04/2009 - DivX Web Player Stream Format Chunk Buffer Overflow - ====================================================================== Table of Contents Affected...
CVE-2008-5259
Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format STRF chunk, which triggers a heap-based buffer overflow...
Integer overflow
Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format STRF chunk, which triggers a heap-based buffer overflow...
CVE-2008-5259
DivX Web Player contains a heap-based buffer overflow in STRF (Stream Format) chunk processing due to an integer signedness error. A crafted DivX file can trigger code execution on remote hosts running vulnerable DivX Web Player versions such as 1.4.2.7 (and possibly earlier). Public sources attr...
CVE-2008-5259
Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format STRF chunk, which triggers a heap-based buffer overflow...
KLA10137 ACE vulnerability in DivX Web Player
An integer signing error was found in DivX Web Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DivX file. Original advisories - Related products DivX-Web-Player CVE list CVE-2008-5259 critic...
DivX Web Player STRF块处理堆溢出漏洞
BUGTRAQ ID: 34523 CVECAN ID: CVE-2008-5259 DivX Web Player是一个浏览器插件,允许在浏览器中直接播放在线DivX视频。 DivX Web Player在解析DivX媒体文件中的STRF(Stream Format)块时存在符号错误,如果用户受骗访问了恶意网站并播放了畸形的媒体文件的话,就可以触发堆溢出,导致执行任意代码。 DivX Web Player 1.4.2.7 DivX ---- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.divx.com/...
Design/Logic Flaw
A certain ActiveX control in the DivXBrowserPlugin npdivx32.dll in DivX Web Player, as distributed with DivX Player 1.3.0, allows remote attackers to cause a denial of service Internet Explorer 7 crash via large values to DivxWP.Resize, related to resizing images...
CVE-2007-1294
A certain ActiveX control in the DivXBrowserPlugin npdivx32.dll in DivX Web Player, as distributed with DivX Player 1.3.0, allows remote attackers to cause a denial of service Internet Explorer 7 crash via large values to DivxWP.Resize, related to resizing images...
CVE-2007-1294
The CVE-2007-1294 issue affects the DivX Web Player’s DivXBrowserPlugin (npdivx32.dll) shipped with DivX Player 1.3.0. The vulnerability allows remote attackers to trigger a denial-of-service via oversized values passed to DivxWP.Resize, related to image resizing, causing Internet Explorer 7 to c...
DivX Web Player 1.3.0 (npdivx32.dll) Remote Denial of Service Exploit
No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"----------------------------------------------------------------------------- DivX Web Player 1.3.0 npdivx32.dll "Resize" method Denial of Service url: http://www.divx.com/...