GCVE - cpe:2.3:a:roxio:cineplayer:3.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:roxio:cineplayer:3.2:*:*:*:*:*:*:*

part: a version: 3.2 update: *

Vendor	Roxio (`01d2a639-9c13-5c5b-bf7c-cd0ea13a1f18`)
Product	Cineplayer (`457f7bd2-6ec4-5203-a81f-7c52cfc4419a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2009-4841`	vulnerable	2026-06-03 14:29:59.356140	Details available Heap-based buffer overflow in the SonicMediaPlayer ActiveX control in SonicMediaPlayer.dll in Roxio CinePlayer 3.2 allows remote attackers to execute arbitrary code via a long argument to the DiskType method. NOTE: this might overlap CVE-2007-1559. Published: 2010-05-05T18:00:00.000Z Updated: 2024-08-07T07:17:25.968Z Open on db.gcve.eu Reference links http://www.exploit-db.com/exploits/8824	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-4840`	vulnerable	2026-06-03 14:29:59.355799	Details available Heap-based buffer overflow in the IAManager ActiveX control in IAManager.dll in Roxio CinePlayer 3.2 allows remote attackers to execute arbitrary code via a long argument to the SetIAPlayerName method. Published: 2010-05-05T18:00:00.000Z Updated: 2024-08-07T07:17:25.701Z Open on db.gcve.eu Reference links http://www.exploit-db.com/exploits/8835 https://exchange.xforce.ibmcloud.com/vulnerabilities/50868	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-3829`	vulnerable	2026-06-03 14:28:17.233226	Details available Multiple stack-based buffer overflows in (a) InterActual Player 2.60.12.0717 and (b) Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a (1) long FailURL attribute in the IAMCE ActiveX Control (IAMCE.dll) or a (2) long URLCode attribute in the IAKey ActiveX Control (IAKey.dll). NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Published: 2007-07-17T21:00:00.000Z Updated: 2024-08-07T14:28:52.475Z Open on db.gcve.eu Reference links http://secunia.com/advisories/25739 http://osvdb.org/37718 https://exchange.xforce.ibmcloud.com/vulnerabilities/35422 http://www.kb.cert.org/vuls/id/470913 http://secunia.com/advisories/25718	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-1559`	vulnerable	2026-06-03 14:28:05.917448	Details available Multiple stack-based buffer overflows in SonicDVDDashVRNav.dll in Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via (1) unspecified long property values to SonicMediaPlayer.dll or (2) long arguments to unspecified methods in SonicMediaPlayer.dll. Published: 2007-04-11T22:00:00.000Z Updated: 2024-08-07T12:59:08.950Z Open on db.gcve.eu Reference links http://secunia.com/secunia_research/2007-46/advisory/ http://osvdb.org/34779 https://exchange.xforce.ibmcloud.com/vulnerabilities/33590 http://www.securitytracker.com/id?1017906 http://secunia.com/advisories/22251	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-0348`	vulnerable	2026-06-03 14:27:56.554578	Details available Stack-based buffer overflow in the IASystemInfo.dll ActiveX control in (1) InterActual Player 2.60.12.0717, (2) Roxio CinePlayer 3.2, (3) WinDVD 7.0.27.172, and possibly other products, allows remote attackers to execute arbitrary code via a long ApplicationType property. Published: 2007-03-21T19:00:00.000Z Updated: 2024-08-07T12:12:18.213Z Open on db.gcve.eu Reference links http://secunia.com/advisories/23075 https://exchange.xforce.ibmcloud.com/vulnerabilities/33186 http://osvdb.org/34314 http://secunia.com/advisories/23032 http://www.kb.cert.org/vuls/id/922969	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.