Title: InterActual Player IAMCE and IAKey Remote Buffer Overflow Vulnerabilities
Severity: HIGH
Description:
InterActual Player is a client application that plays DVD-ROM content. The application is available for Microsoft Windows.
InterActual Player's IAMCE and IAKey ActiveX controls are prone to stack-based buffer-overflow vulnerabilities because they fail to properly bounds-check user-supplied input before copying it to insufficiently sized memory buffers.
These issues arise when passing a large string to an argument of the 'FailURL' property of the IAMCE.dll control and when passing an inordinately large string to the 'URLCode' property of the IAKey.dll control. The input to IAMCE.dll must be greater than 256 bytes; the malicious input to IAKey.dll must exceed 900 bytes.
Note that the IAKey.dll ActiveX control of interActual Player is a shared component used with Roxio CinePlayer 3.2. Therefore, Roxio CinePlayer contains a stack-based buffer-overflow as well.
An attacker could exploit this issue by creating a malicious web page that would initialize the ActiveX controller and execute arbitrary code within the context of the user.
These issues affect InterActual Player 2.60.12.0717; other versions may be vulnerable as well.
Affected Products:
- InterActual Technologies InterActual Player 2.60.12.0717
- Roxio CinePlayer 3.2
References:
- Roxio: Roxio CinePlayer
- interActual Technologies: interActual Player
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
