Vulnerability Description
Multiple stack-based buffer overflows in SonicDVDDashVRNav.dll in Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via (1) unspecified long property values to SonicMediaPlayer.dll or (2) long arguments to unspecified methods in SonicMediaPlayer.dll.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Roxio | Cineplayer | 3.2 |
References
- http://osvdb.org/34779
- http://secunia.com/advisories/22251Vendor Advisory
- http://secunia.com/secunia_research/2007-46/advisory/Vendor Advisory
- http://www.securityfocus.com/bid/23412
- http://www.securitytracker.com/id?1017906
- http://www.vupen.com/english/advisories/2007/1337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33590
- http://osvdb.org/34779
- http://secunia.com/advisories/22251Vendor Advisory
- http://secunia.com/secunia_research/2007-46/advisory/Vendor Advisory
- http://www.securityfocus.com/bid/23412
- http://www.securitytracker.com/id?1017906
- http://www.vupen.com/english/advisories/2007/1337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33590
FAQ
What is CVE-2007-1559?
CVE-2007-1559 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple stack-based buffer overflows in SonicDVDDashVRNav.dll in Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via (1) unspecified long property values to SonicMediaPlayer.dll...
How severe is CVE-2007-1559?
CVE-2007-1559 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1559?
Check the references section above for vendor advisories and patch information. Affected products include: Roxio Cineplayer.