RSS   Vulnerabilities for 'Web player'   RSS

2015-01-13
 
CVE-2014-10024

CWE-189
 

 
Multiple integer signedness errors in DirectShowDemuxFilter, as used in Divx Web Player, Divx Player, and other Divx plugins, allow remote attackers to execute arbitrary code via a (1) negative or (2) large value in a Stream Format (STRF) chunk in an AVI file, which triggers a heap-based buffer overflow.

 

 >>> Vendor: DIVX 7 Products
Divx player
Web player
Player
Divx web player
Divxdb
Divx plus player
Directshowdemuxfilter


Copyright 2024, cxsecurity.com

 

Back to Top