CVE-2007-4722

Опубликовано: 05 сент. 2007

Источник: nvd

CVSS2: 6.8

EPSS Средний

Описание

Multiple stack-based buffer overflows in the Quantum Streaming Internet Explorer Player ActiveX control in qsp2ie07051001.dll 1.0.0.1 in Move Media Player allow remote attackers to execute arbitrary code via a long string to the (1) Play and (2) Buzzer methods.

Ссылки

http://osvdb.org/37778
http://secunia.com/advisories/26600
Vendor Advisory
http://www.kb.cert.org/vuls/id/298345
US Government Resource
http://www.securityfocus.com/bid/25529
https://exchange.xforce.ibmcloud.com/vulnerabilities/36433
https://www.exploit-db.com/exploits/4868
http://osvdb.org/37778
http://secunia.com/advisories/26600
Vendor Advisory
http://www.kb.cert.org/vuls/id/298345
US Government Resource
http://www.securityfocus.com/bid/25529
https://exchange.xforce.ibmcloud.com/vulnerabilities/36433
https://www.exploit-db.com/exploits/4868

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:move_networks_inc:move_media_player:1.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.38964

Средний

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-2v2g-7jx3-jq4g

github

почти 4 года назад