Divx ≫ Divx Web Player

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

9.3

CVE-2008-5259

EPSS 5.93%
Published 16.04.2009 15:12:57
Last modified 09.04.2025 00:30:58

Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format (STRF) chunk, which triggers a heap-based buffer overflow.

7.8

CVE-2007-1294

Exploit

EPSS 5.89%
Published 07.03.2007 00:19:00
Last modified 09.04.2025 00:30:58

A certain ActiveX control in the DivXBrowserPlugin (npdivx32.dll) in DivX Web Player, as distributed with DivX Player 1.3.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via large values to DivxWP.Resize, related t...