1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Move Media Player Quantum ActiveX BO

HTTP Move Media Player Quantum ActiveX BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempt to exploit a buffer overflow vulnerability by passing long arguments into the methods of Move Media Player Quantum Streaming ActiveX Control.

Additional Information

Move Media Player is a web-based multi-media player.

The application is prone to multiple remote buffer-overflow vulnerabilities because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer.

These issues affect the 'Play()' and 'Buzzer()' methods of the 'Quantum Streaming IE Player (qsp2ie07051001.dll)' ActiveX control.

Exploiting these issues allows remote attackers to execute arbitrary code in the context of applications using the affected ActiveX control (typically Internet Explorer) and to compromise affected computers. Failed attempts will likely result in denial-of-service conditions.

These issues affect Move Media Player 1.0.0.1; other versions may also be vulnerable.

Affected

  • Move Networks Move Media Player 1.0.1
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube