Vulnerabilities (CVE)

Filtered by vendor Xunlei Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2224 1 Xunlei 1 Thunder 2024-11-21 7.5 HIGH N/A
Xunlei Thunder before 7.2.6 allows remote attackers to execute arbitrary code via a crafted file, related to a "DLL injection vulnerability."
CVE-2007-6144 1 Xunlei 1 Web Thunder 2024-11-21 6.0 MEDIUM N/A
Heap-based buffer overflow in the PPlayer.XPPlayer.1 ActiveX control in pplayer.dll_1_work in Xunlei Thunder 5.7.4.401 allows remote attackers to execute arbitrary code via a long string in a FlvPlayerUrl property value. NOTE: some of these details are obtained from third party information.
CVE-2007-5064 1 Xunlei 1 Web Thunder 2024-11-21 6.8 MEDIUM N/A
Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long first argument to the DownURL2 method. NOTE: some of these details are obtained from third party information.
CVE-2007-3296 1 Xunlei 1 Web Thunderbolt 2024-11-21 9.3 HIGH N/A
The ThunderServer.webThunder.1 ActiveX control in xunlei Web Thunderbolt 1.7.3.109 allows remote attackers to download arbitrary files and conduct other unauthorized actions by invoking dangerous methods.