DivX Web Player Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running DivX Web Player which is prone to buffer overflow vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes within the context of the application by tricking a user into opening a crafted DivX file. Impact level: System

Solution

Update to version 1.4.3.4 http://www.divx.com/downloads/divx

Insight

This flaw is due to the boundary checking error while processing Stream Format 'STRF' chunks which causes heap overflow.

Affected

DivX Web Player 1.4.2.7 and prior on Windows.

References

http://en.securitylab.ru/nvd/377996.php
http://secunia.com/advisories/33196
http://www.vupen.com/english/advisories/2009/1044

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5259
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader 'mailListIsPdf' Buffer Overflow Vulnerability (Linux)
BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability
ChaSen Buffer Overflow Vulnerability (Linux)
BaoFeng Storm ActiveX Control Buffer Overflow Vulnerability
Adobe Audition '.ses' Multiple Buffer Overflow Vulnerabilities (Windows)

Take action and discover your vulnerabilities