Sopcast: Security Vulnerabilities
SopCast 3.4.7.45585 uses weak permissions (Everyone:Full Control) for Diagnose.exe, which allows local users to execute arbitrary code by replacing Diagnose.exe with a Trojan horse program.
CVSS Score
7.2
EPSS Score
0.008
Published
2011-12-30
Insecure method vulnerability in the SopCast SopCore ActiveX control in sopocx.ocx 3.0.3.501 allows remote attackers to execute arbitrary programs via an executable file name in the argument to the SetExternalPlayer method.
CVSS Score
9.3
EPSS Score
0.019
Published
2009-03-04