CVE Tools

divx

Consumer Softwarecommercial

10

Cumulative CVEs

8

Monthly snapshots

#56

Peak rank

Top products

directshowdemuxfilter1 player1 web player1

Latest CVEs

The 11 most recently published vulnerabilities affecting divx.

CVE-2014-10024Multiple integer signedness errors in DirectShowDemuxFilter, as used in Divx Web Player, Divx Player, and other Divx plugins, allow remote attackers to execute arbitrary code via a (1) negative or ...7.5Jan 13, 2015
CVE-2010-5231Untrusted search path vulnerability in DivX Player 7.2.019 allows local users to gain privileges via a Trojan horse VersionCheckDLL.dll file in the current working directory, as demonstrated by a d...6.9Sep 7, 2012
CVE-2010-5232Untrusted search path vulnerability in DivX Plus Player 8.1.0 allows local users to gain privileges via a Trojan horse ssleay32.dll file in a certain directory. NOTE: the provenance of this inform...6.9Sep 7, 2012
CVE-2008-5259Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format (STRF) chunk...9.3Apr 16, 2009
CVE-2008-1912Stack-based buffer overflow in DivX Player 6.7 build 6.7.0.22 and earlier allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long...9.3Apr 22, 2008
CVE-2008-1800Multiple cross-site scripting (XSS) vulnerabilities in index.php in DivXDB 2002 0.94b allow remote attackers to inject arbitrary web script or HTML via the (1) choice, (2) _page_, (3) zone_admin, (...4.3Apr 15, 2008
CVE-2008-0090A certain ActiveX control in npUpload.dll in DivX Player 6.6.0 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long argument to the SetPassword method.5.0Jan 4, 2008
CVE-2007-1294A certain ActiveX control in the DivXBrowserPlugin (npdivx32.dll) in DivX Web Player, as distributed with DivX Player 1.3.0, allows remote attackers to cause a denial of service (Internet Explorer ...7.8Mar 7, 2007
CVE-2007-0429DivXBrowserPlugin (aka DivX Web Player) npdivx32.dll, as distributed with DivX Player 6.4.1, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) by invoking the GoWindo...5.0Jan 23, 2007
CVE-2006-6444Stack-based buffer overflow in Nostra DivX Player 2.1, 2.2.00.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long string in an M3U file. NOTE: The provenance of t...6.8Dec 10, 2006
CVE-2005-0304Directory traversal vulnerability in DivX Player 2.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename in a ZIP file for a skin.5.0Feb 10, 2005