Vulnerability Details CVE-2009-1740
Multiple heap-based buffer overflows in the D-Link MPEG4 Viewer ActiveX Control (csviewer.ocx) 2.11.918.2006 allow remote attackers to execute arbitrary code via a long argument to the (1) SetFilePath and (2) SetClientCookie methods. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.029
EPSS Ranking 85.9%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/54458
- http://secunia.com/advisories/35066
- http://www.securityfocus.com/bid/34990
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50556
- http://osvdb.org/54458
- http://secunia.com/advisories/35066
- http://www.securityfocus.com/bid/34990
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50556
Products affected by CVE-2009-1740
-
cpe:2.3:a:dlink:mpeg4_viewer_activex_control:2.11.918.2006