漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
BlazeVideo HDTV Player Pro 6.6.0.3 Filename Handling Buffer Overflow
漏洞信息
BlazeVideo HDTV Player Pro v6.6.0.3 is vulnerable to a stack-based buffer overflow due to improper handling of user-supplied input embedded in .plf playlist files. When parsing a crafted .plf file, the MediaPlayerCtrl.dll component invokes PathFindFileNameA() to extract a filename from a URL-like string. The returned value is then copied to a fixed-size stack buffer using an inline strcpy call without bounds checking. If the input exceeds the buffer size, this leads to a stack overflow and potential arbitrary code execution under the context of the user.
漏洞信息
N/A
漏洞
栈缓冲区溢出
漏洞
BlazeVideo HDTV Player Pro 安全漏洞
漏洞信息
BlazeVideo HDTV Player Pro是美国BlazeVideo公司的一个视频播放器。 BlazeVideo HDTV Player Pro v6.6.0.3版本存在安全漏洞,该漏洞源于未正确处理.plf文件输入,可能导致缓冲区溢出和任意代码执行。
漏洞信息
N/A
漏洞
N/A