Vulnerabilities > Divx > Divx WEB Player
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-04-16 | CVE-2008-5259 | Numeric Errors vulnerability in Divx web Player Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format (STRF) chunk, which triggers a heap-based buffer overflow. | 9.3 |
2007-03-07 | CVE-2007-1294 | Remote Denial of Service vulnerability in Divx web Player 1.3.0 A certain ActiveX control in the DivXBrowserPlugin (npdivx32.dll) in DivX Web Player, as distributed with DivX Player 1.3.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via large values to DivxWP.Resize, related to resizing images. | 7.8 |