DivX Plus Player DLL Loading Arbitrary Code Execution Vulnerability

DivX Plus Player is prone to a vulnerability that lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

DivX Plus Player 7.2.019 and 8.1.0 are vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus