Vulnerabilities > Divx > WEB Player
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-13 | CVE-2014-10024 | Numeric Errors vulnerability in Divx Directshowdemuxfilter, Player and web Player Multiple integer signedness errors in DirectShowDemuxFilter, as used in Divx Web Player, Divx Player, and other Divx plugins, allow remote attackers to execute arbitrary code via a (1) negative or (2) large value in a Stream Format (STRF) chunk in an AVI file, which triggers a heap-based buffer overflow. | 7.5 |