E13-dj001
CVSS:
9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)
False Positive:
t
Variants:
1
Year:
2013
Description
This strike exploits a buffer overflow in Viscom's Movie Player Pro ActiveX control MOVIEPLAYER.MoviePlayerCtrl.1. The strFontName parameter is not properly validated, and if an overly long string is received it will overflow the buffer.