Intrusion Prevention

Sopcast.SopCore.SetExternalPlayer.Code.Execution

Description

This indicates an attack attempt against a code execution vulnerability in Sopcast SopCore.
The vulnerability is caused by an error when the vulnerable software handles a malicious "SetExternalPlayer" property. It allows a remote attacker to execute arbitrary code via sending a crafted web page.

Affected Products

sopocx.ocx 3.0.3.501

Impact

System Compromise.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2009-0811