CVE-2007-5911

Multiple stack-based buffer overflows in the AxMetaStream ActiveX control in AxMetaStream.dll 3.3.2.26 in Viewpoint Media Player 3.2 allow remote attackers to execute arbitrary code via a long string argument to the (1) BroadcastKey, (2) BroadcastKeyFileURL, (3) Component, (4) ComponentClassID, (5) ComponentFileName, (6) ExtraProperty, (7) Properties, (8) RequiredVersions, (9) Source, or (10) XMLText method.

Published: Nov 10, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5911
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
viewpoint / media_player	3.2	3.2.x

http://osvdb.org/40268
http://shinnai.altervista.org/exploits/txt/TXT_dolp8rQrZmWLlINruy0o.html
http://www.securityfocus.com/bid/26356
https://exchange.xforce.ibmcloud.com/vulnerabilities/38287
https://www.exploit-db.com/exploits/4610

Vulnerability Database

289,599

CVE-2007-5911