3DVIA Player WebPlayer ActiveX Control Multiple Buffer Overflow Vulnerabilities
BID:53565
Info
3DVIA Player WebPlayer ActiveX Control Multiple Buffer Overflow Vulnerabilities
| Bugtraq ID: | 53565 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 16 2012 12:00AM |
| Updated: | May 16 2012 12:00AM |
| Credit: | Parvez Anwar via Secunia |
| Vulnerable: |
Dassault Systemes 3DVIA Player 5.0.0.20 |
| Not Vulnerable: | |
Discussion
3DVIA Player WebPlayer ActiveX Control Multiple Buffer Overflow Vulnerabilities
3DVIA Player is prone to multiple buffer-overflow vulnerabilities.
Attackers could exploit these issues to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will likely result in denial-of-service conditions.
3DVIA Player 5.0.0.20 is vulnerable; other versions are also affected.
3DVIA Player is prone to multiple buffer-overflow vulnerabilities.
Attackers could exploit these issues to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will likely result in denial-of-service conditions.
3DVIA Player 5.0.0.20 is vulnerable; other versions are also affected.
Exploit / POC
3DVIA Player WebPlayer ActiveX Control Multiple Buffer Overflow Vulnerabilities
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
3DVIA Player WebPlayer ActiveX Control Multiple Buffer Overflow Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
3DVIA Player WebPlayer ActiveX Control Multiple Buffer Overflow Vulnerabilities
References:
References:
- 3DVIA Player Homepage (Dassault Systemes)