Intrusion Prevention



D-Link MPEG4 SHM Audio ActiveX Control ('VAPGDecoder.dll') is vulnerable to a buffer overflow issue when an overly long string is passed to the Url parameter. A malicious user can trick a victim to visit a malicious web site to use this vulnerability and could then execute arbitrary remote code execution on the victim's host.

Affected Products

D-Link MPEG4 SHM Audio Control


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Update the software to latest version or set the kill-bit on the ActiveX control.

CVE References