CVE-2007-5911

Viewpoint Media Player 3.2 - Remote Code Execution via AxMetaStream ActiveX Control Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5911. PoCs published by shinnai.

AI-analyzed exploit summary This exploit demonstrates a stack-based buffer overflow in Viewpoint Media Player's AxMetaStream.dll via multiple vulnerable methods (e.g., ComponentClassID). The PoC uses VBScript to trigger the overflow with a long string, leading to potential remote code execution.

Description

Multiple stack-based buffer overflows in the AxMetaStream ActiveX control in AxMetaStream.dll 3.3.2.26 in Viewpoint Media Player 3.2 allow remote attackers to execute arbitrary code via a long string argument to the (1) BroadcastKey, (2) BroadcastKeyFileURL, (3) Component, (4) ComponentClassID, (5) ComponentFileName, (6) ExtraProperty, (7) Properties, (8) RequiredVersions, (9) Source, or (10) XMLText method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmldoswindows

https://www.exploit-db.com/exploits/4610

View Code ZIP pw:eip

This exploit demonstrates a stack-based buffer overflow in Viewpoint Media Player's AxMetaStream.dll via multiple vulnerable methods (e.g., ComponentClassID). The PoC uses VBScript to trigger the overflow with a long string, leading to potential remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Viewpoint Media Player (AxMetaStream.dll) version 3.3.2.26

No auth needed

Prerequisites: Viewpoint Media Player installed · Internet Explorer with ActiveX enabled

MITRE ATT&CK