Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Divx Subscribe
Filtered by product Divx Player
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-0090 2 Divx, Microsoft 2 Divx Player, Internet Explorer 2021-07-23 5.0 MEDIUM N/A
A certain ActiveX control in npUpload.dll in DivX Player 6.6.0 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long argument to the SetPassword method.
CVE-2008-1912 1 Divx 1 Divx Player 2018-10-11 9.3 HIGH N/A
Stack-based buffer overflow in DivX Player 6.7 build 6.7.0.22 and earlier allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long subtitle in a .SRT file.
CVE-2007-0429 1 Divx 1 Divx Player 2017-10-18 5.0 MEDIUM N/A
DivXBrowserPlugin (aka DivX Web Player) npdivx32.dll, as distributed with DivX Player 6.4.1, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) by invoking the GoWindowed method for a certain instance of the ActiveX object.
CVE-2006-6444 1 Divx 1 Divx Player 2017-07-28 6.8 MEDIUM N/A
Stack-based buffer overflow in Nostra DivX Player 2.1, 2.2.00.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long string in an M3U file. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2005-0304 1 Divx 1 Divx Player 2017-07-10 5.0 MEDIUM N/A
Directory traversal vulnerability in DivX Player 2.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename in a ZIP file for a skin.
CVE-2010-5231 1 Divx 1 Divx Player 2012-09-07 6.9 MEDIUM N/A
Untrusted search path vulnerability in DivX Player 7.2.019 allows local users to gain privileges via a Trojan horse VersionCheckDLL.dll file in the current working directory, as demonstrated by a directory that contains a .avi file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.