1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Viewpoint MediaPlayer ActiveX BO

HTTP Viewpoint MediaPlayer ActiveX BO

Severity: Medium

This attack could pose a moderate security threat. It does not require immediate action.

Description

This signature detects an attempt to exploit a buffer-overflow vulnerability in the Viewpoint Media Player AxMetaStream.DLL ActiveX control which could result in remote code execution.

Additional Information

Viewpoint Media Player is prone to multiple stack-based buffer-overflow vulnerabilities because the software fails to adequately check boundaries on data supplied to ActiveX control methods.

An attacker can exploit these issues to execute arbitrary code in the context of a user running the application. Failed attempts will likely result in denial-of-service conditions.

Affected

  • Viewpoint Viewpoint Media Player 3.2
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube