Details of VAR-201905-1427

ID

VAR-201905-1427

TITLE

Buffer Overflow Vulnerability in Aviosoft DVD X Player Standard Software

Trust: 0.6

sources: CNVD: CNVD-2019-12534

DESCRIPTION

Aviosoft DVD X Player Standard is a DVD player from Aviosoft, USA. Aviosoft DVD X Player Standard software has a buffer overflow vulnerability. The vulnerability is due to the inability to handle malformed playlist files, and an attacker could exploit the vulnerability to execute arbitrary code in the context of an application.

Trust: 0.6

sources: CNVD: CNVD-2019-12534

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2019-12534

AFFECTED PRODUCTS

vendor:

aviosoft

model:

dvd player standard

scope:

version:

xv5.5.3.8

Trust: 0.6

sources: CNVD: CNVD-2019-12534

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2019-12534
value:	LOW
Trust: 0.6

CNVD:	CNVD-2019-12534
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2019-12534

EXTERNAL IDS

db:

CNVD

id:

CNVD-2019-12534

Trust: 0.6

sources: CNVD: CNVD-2019-12534

SOURCES

db:

CNVD

id:

CNVD-2019-12534

LAST UPDATE DATE

2022-05-04T09:16:27.676000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2019-12534

date:

2019-06-19T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2019-12534

date:

2019-05-16T00:00:00