Xunlei : Security Vulnerabilities, CVEs, CVSS score >= 2

CVE-2012-2224

Xunlei Thunder before 7.2.6 allows remote attackers to execute arbitrary code via a crafted file, related to a "DLL injection vulnerability."
Max CVSS
7.5
EPSS Score
3.71%
Published
2012-04-11
Updated
2017-12-20

CVE-2007-6144

Heap-based buffer overflow in the PPlayer.XPPlayer.1 ActiveX control in pplayer.dll_1_work in Xunlei Thunder 5.7.4.401 allows remote attackers to execute arbitrary code via a long string in a FlvPlayerUrl property value. NOTE: some of these details are obtained from third party information.
Max CVSS
6.0
EPSS Score
1.52%
Published
2007-11-27
Updated
2011-03-08

CVE-2007-5064

Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long first argument to the DownURL2 method. NOTE: some of these details are obtained from third party information.
Max CVSS
6.8
EPSS Score
22.82%
Published
2007-09-24
Updated
2011-03-08

CVE-2007-3296

The ThunderServer.webThunder.1 ActiveX control in xunlei Web Thunderbolt 1.7.3.109 allows remote attackers to download arbitrary files and conduct other unauthorized actions by invoking dangerous methods.
Max CVSS
9.3
EPSS Score
0.99%
Published
2007-06-20
Updated
2008-11-15
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close