Stack-based buffer overflow in the GetUiDllVersion function in an ActiveX control in UiCheck.dll prior to 1.0.0.7 in UiTV UiPlayer, as used in BaiduX and other products, allows remote malicious users to execute arbitrary code via the filename parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
uitv uiplayer |
||
baidu baidux |