357 matches found
Adobe Flash Player FLV integer overflow
Overview A vulnerability in the Adobe Flash Player could allow a remote attacker to execute arbitrary code on an affected system. Description Adobe Flash Player is a player for the Flash media format and enables frame-based animations with sound to be viewed within a web browser. An integer...
Code injection
Media Player Classic MPC 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FLV file...
CVE-2007-3662
Media Player Classic MPC 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FLV file...
CVE-2007-3662
Media Player Classic MPC 6.4.9.0 allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FLV file...
CVE-2007-3662
The CVE-2007-3662 entry affects Media Player Classic (MPC) 6.4.9.0 . It allows a user-assisted remote attacker to trigger a denial of service and potentially execute arbitrary code by opening a crafted FLV file . No exploitation details or patch information are provided in the connected documents...
CVE-2006-3624
Multiple cross-site scripting XSS vulnerabilities in FLV Players 8 allow remote attackers to inject arbitrary web script or HTML via the url parameter to 1 player.php or 2 popup.php...
CVE-2006-3625
FLV Players 8 allows remote attackers to obtain sensitive information via 1 a direct request to paginate.php or 2 an invalid p parameter to player.php, which reveal the path in an error message...
CVE-2006-3625
Summary of public records : CVE-2006-3625 corresponds to a race condition in the Linux kernel process filesystem that can lead to privilege escalation. Public disclosures (DSA 1111-1/DSA 1111-2) from Debian specify that kernels in the 2.6.8 series were affected and provide architecture-specific f...
CVE-2006-3624
Multiple cross-site scripting XSS vulnerabilities in FLV Players 8 allow remote attackers to inject arbitrary web script or HTML via the url parameter to 1 player.php or 2 popup.php...
CVE-2006-3625
FLV Players 8 allows remote attackers to obtain sensitive information via 1 a direct request to paginate.php or 2 an invalid p parameter to player.php, which reveal the path in an error message...
CVE-2006-3624
CVE-2006-3624 documents multiple cross-site scripting (XSS) vulnerabilities in FLV Players 8 . The issue is triggered by the url parameter to either player.php or popup.php , allowing remote injection of arbitrary script/HTML. NVD reports a CVSSv2 base score of 4.3 (MEDIUM) with network attack ve...
FLVPlayer8.txt
Produce : FLV Players 8 Website : http://www.videospark.com + Fullpath Disclosure : 1 http://localhost/flv8/paginate.php Fatal error: Class simplepagemaker: Cannot inherit from undefined class object in /var/www/zero/httpdocs/flv8/paginate.php on line 45 2...
FLV Players Multiple Input Validation Vulnerabilities
Produce : FLV Players 8 Website : http://www.videospark.com + Fullpath Disclosure : 1 http://localhost/flv8/paginate.php Fatal error: Class simplepagemaker: Cannot inherit from undefined class object in /var/www/zero/httpdocs/flv8/paginate.php on line 45 2...
FLV Players 8 - 'popup.php?url' Cross-Site Scripting
source: https://www.securityfocus.com/bid/18954/info FLV Player is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an...
FLV Players 8 - 'player.php?url' Cross-Site Scripting
source: https://www.securityfocus.com/bid/18954/info FLV Player is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an...
FLV Players 8 - player.php?url Cross-Site Scripting
FLV Players 8 - player.php?url Cross-Site Scripting source: https://www.securityfocus.com/bid/18954/info FLV Player is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...
FLV Players 8 - popup.php?url Cross-Site Scripting
FLV Players 8 - popup.php?url Cross-Site Scripting source: https://www.securityfocus.com/bid/18954/info FLV Player is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...