Multiple argument injection vulnerabilities in PPLive.exe in PPLive 1.9.21 and previous versions allow remote malicious users to execute arbitrary code via a UNC share pathname in the LoadModule argument to the (1) synacast, (2) Play, (3) pplsv, or (4) ppvod URI handler. NOTE: some of these details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pplive pplive |
||
pplive pplive 1.9.15 |