N/A

Stack-based buffer overflow in the Quantum Streaming Player (Quantum Streaming IE Player) ActiveX control (aka QSP2IE.QSP2IE) in qsp2ie07076007.dll 7.7.6.7 and qsp2ie07074039.dll 7.7.4.39 in Move Media Player allows remote attackers to execute arbitrary code via a long argument to the UploadLogs method, a different vector than CVE-2007-4722. NOTE: some of these details are obtained from third party information.

N/A

N/A

Move Media Player Quantum Streaming IE播放器ActiveX控件 缓冲区溢出漏洞

Move Media Player是一款网络流媒体播放器。 Move Media Player的ActiveX控件实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 Move Media Player所安装的Quantum Streaming IE Player ActiveX控件(qsp2ie07074039.dll)没有正确地验证对UploadLogs()方式的输入参数。如果用户受骗访问了恶意网页并向该方式传送了超长URL参数的话，就可能触发栈溢出，导致执行任意指令。

N/A

N/A