Description
IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, version 2.0.1.4 and prior versions on Windows. File Donwload vulnerability in ZInsX.ocx of IMGTech Co,Ltd Zoneplayer allows attacker to cause arbitrary code execution.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_confirm
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35346
Product, Vendor Advisory x_refsource_confirm
http://www.zoneplayer.co.kr/
Scores
CVSS v3
7.8
EPSS
0.0117
EPSS Percentile
63.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (2)
imgtech/zoneplayer
2.0.1.3
imgtech/zoneplayer
2.0.1.4
Published
May 07, 2020
Tracked Since
Feb 18, 2026