CVE-2011-1065 Information

Description

Multiple stack-based buffer overflows in the PIPIWebPlayer ActiveX control (PIWebPlayer.ocx) in PIPI Player 2.8.0.0 allow remote attackers to execute arbitrary code via long arguments to the (1) PlayURL or (2) PlayURLWithLocalPlayer methods.

Reference

http://secunia.com/advisories/43394 http://www.securityfocus.com/bid/46468 http://www.wooyun.org/bugs/wooyun-2010-01382 http://www.wooyun.org/bugs/wooyun-2010-01383 https://exchange.xforce.ibmcloud.com/vulnerabilities/65537