2 matches found
CVE-2007-1294
The CVE-2007-1294 issue affects the DivX Web Player’s DivXBrowserPlugin (npdivx32.dll) shipped with DivX Player 1.3.0. The vulnerability allows remote attackers to trigger a denial-of-service via oversized values passed to DivxWP.Resize, related to image resizing, causing Internet Explorer 7 to c...
CVE-2008-5259
DivX Web Player contains a heap-based buffer overflow in STRF (Stream Format) chunk processing due to an integer signedness error. A crafted DivX file can trigger code execution on remote hosts running vulnerable DivX Web Player versions such as 1.4.2.7 (and possibly earlier). Public sources attr...