PT-2009-4465 · Mozilla +1 · Firefox +1

Name of the Vulnerable Software and Affected Versions: Worldweaver DX Studio Player versions prior to 3.0.29.1 Description: The issue allows remote attackers to execute arbitrary commands via a .dxstudio file that invokes the shell.execute JavaScript API method, due to a lack of access restrictio...