cpe:/a:xunlei:web_thunder:5.6.9.344 CVE-2007-5064 2007-09-24T18:17:00.000-04:00 2011-03-07T22:00:01.533-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-09-25T13:55:00.000-04:00 ALLOWS_OTHER_ACCESS BID 25751 SECUNIA 26964 OSVDB 37777 VUPEN ADV-2007-3309 MISC http://1v1.name/show-283-1.html Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long first argument to the DownURL2 method. NOTE: some of these details are obtained from third party information.