Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long first argument to the DownURL2 method. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
迅雷ActiveX控件DownURL2方式远程缓冲区溢出漏洞
Vulnerability Description
Web迅雷是迅雷公司最新推出的一款基于多资源多线程技术的下载工具。 迅雷的ActiveX控件实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制用户系统。 迅雷中的DPClient.Vod.1 ActiveX控件(DapPlayer_Now.dll)没有正确的处理传送给DownURL2()方式传送的参数,如果用户受骗访问了恶意网页的话,就可能触发缓冲区溢出,导致执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A