Monday, September 6, 2010

Moovida Media Player version 2.0.0.15: Insecure DLL Hijacking Vulnerability

Users of Moovida Media Player version 2.0.0.15 please be advised of an Insecure DLL Hijacking vulnerability that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com

Moovida-SA-09/02/2010: Moovida Media Player version 2.0.0.15 Insecure DLL Hijacking Vulnerability

VULNERABILITY DESCRIPTION



The Moovida Media Player application passes an insufficiently

qualified path in loading external libraries, "libc.dll"

and "quserex.dll" when a user opens its associated file with

extensions - f4v, flv, img, dv.
Read more at www.criticalwatch.com
 

No comments:

Post a Comment