CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-0090

A certain ActiveX control in npUpload.dll in DivX Player 6.6.0 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long argument to the SetPassword method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.125

EPSS Ranking 93.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/27106
https://exchange.xforce.ibmcloud.com/vulnerabilities/39386
https://www.exploit-db.com/exploits/4829
http://www.securityfocus.com/bid/27106
https://exchange.xforce.ibmcloud.com/vulnerabilities/39386
https://www.exploit-db.com/exploits/4829

Products affected by CVE-2008-0090

Divx » Divx Player » Version: 6.6.0

cpe:2.3:a:divx:divx_player:6.6.0
Microsoft » Internet Explorer » Version: 7

cpe:2.3:a:microsoft:internet_explorer:7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0090

Products

Pricing

Contact Us