DivX Web Player Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running DivX Web Player which is prone to buffer overflow vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes within the context of the application by tricking a user into opening a crafted DivX file. Impact level: System

Solution

Update to version 1.4.3.4 http://www.divx.com/downloads/divx

Insight

This flaw is due to the boundary checking error while processing Stream Format 'STRF' chunks which causes heap overflow.

Affected

DivX Web Player 1.4.2.7 and prior on Windows.

References

http://en.securitylab.ru/nvd/377996.php
http://secunia.com/advisories/33196
http://www.vupen.com/english/advisories/2009/1044

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5259

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

ALLMediaServer Request Handling Stack Buffer Overflow Vulnerability
ACDSee FotoSlate PLP Multiple Buffer Overflow Vulnerabilities
ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability
Adobe Reader 'Plug-in' Buffer Overflow Vulnerability (Windows)
DesignWorks Professional '.cct' File BOF Vulnerability

Take action and discover your vulnerabilities